"Ascension Attack Caused by Employee Downloading Malicious File"

Ascension has recently revealed that a ransomware gang gained access to its systems after an employee accidently downloaded a malicious file.  The incident, took place in May 2024 and forced the US private healthcare provider to divert ambulances and postpone patient appointments.  Additionally, the attack prevented access to electronic health records (EHR), and took down various systems used to book tests, procedures, and medications.  The company is still working to restore its systems.  In a recent update, the spokesperson said the company had identified the source of the attack, stating: “An individual working in one of our facilities accidentally downloaded a malicious file that they thought was legitimate.”  There is no further information about the source of the malicious file, but it seems likely to be a phishing-related attack.

Infosecurity Magazine reports: "Ascension Attack Caused by Employee Downloading Malicious File"