Healthcare Information Security

Latest Health Data Breaches News

Allscripts Ransomware Attack Impacts Limited Number of Applications

A ransomware attack reportedly impacted Allscripts, with some customers reportedly unable to access the company’s cloud EHR.

allscripts ransomware attack data security

Source: Thinkstock

By Elizabeth Snell

UPDATE: An Allscripts spokesperson emailed an additional update to HealthITSecurity.com on January 26, 2018 about the ransomware attack. 

An Allscripts ransomware attack was reported on January 18, 2018, with certain applications made inaccessible.

An Allscripts user reported to HIStalk that InfoButton, regulatory reporting, clinical decision support, direct messaging, and Payerpath were all down as of the morning of January 18. Allscripts reported on the same day on its e-prescription login page that EPCS functionality was down and there was not yet a firm ETA for when it would be restored.

“Please note that EPCS users in EPCS mandated states (CT, NY, ME) pursuant to the state EPCS statute, write paper scripts due to a temporary technical difficulty with the EPCS service,” Allscripts stated. “It is recommended you note the "pharmacist special instructions" and in the EHR that a paper or oral prescription was provided due to technical issues.” 

Allscripts spokesperson Concetta Rasiarmos said in an email to HealthITSecurity.com that a ransomware incident had impacted a “limited number” of Allscripts applications.

“We are working diligently to restore these systems, and most importantly, to ensure our clients’ data is protected,” Rasiarmos stated. “Although our investigation is ongoing, there is currently no evidence that any data has been removed from our systems. We regret any inconvenience caused by this temporary outage.”

Just last week, Indiana-based Hancock Health experienced a ransomware attack and paid $55,000 to recover approximately 1,400 patient files that had been encrypted. 

Hancock Health CEO Steve Long told the Greenfield Daily Reporter that no patient information was taken and that the affected files were backed up and could have been recovered. The recovery process would have taken days or even weeks and would have been expensive, he added.

“We’re in the clear in terms of the intrusion,” Long said. “Now, we’re in recovery mode.”

Similar to the Allscripts ransomware attack, doctors and nurses used pen and paper to keep track of patient records during the downtime, according to Hancock Health Senior Vice President and Chief Strategy and Innovation Officer Rob Matt.

UPDATE: Allscripts' Concetta Rasiarmos emailed the following update to HealthITSecurity.com on Friday, January 26, 2018:

"We are pleased to announce that service to all affected clients has been restored."

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy


no, thanks

Continue to site...