As of Tuesday, Ascension had restored access to electronic health records in several states and regions. That included four Michigan sites within Genesys’ markets (Flint area), Rochester, Saginaw and Tawas City.
Beyond that, Ascension provided few details about the initial breach.
It is not clear whether the person who downloaded the files was staff, a contractor or a visitor performing work unrelated to hospital systems, for example. And while Ascension recognized the attack as “ransomware,” it did not say whether it paid the ransom or identify the attacker or attacking organization.
Ascension Michigan has repeatedly declined interview requests from Bridge since the rape. Rather, it has updated patients through a national page here and a page for Michigan patients here.
It is also unclear how long it may take to fully restore systems. Earlier this month, Ascension reported a “turning point in our response efforts” in the Florida, Alabama and Austin markets.
Credit Monitoring Offer
The St. Louis-based chain also sought to assure patients that their personal information can still be safe, even as it extended an offering of credit monitoring services and identity theft protection services.
(Patients can sign up for credit monitoring and identity theft protection services at 1-888-498-8066.)