Tallahassee Memorial HealthCare Brings Systems Back Online Following IT Security Incident

February 23, 2023 - Tallahassee Memorial HealthCare (TMH) has restored its computer systems and returned to standard operations across its network, the health system announced.

As previously reported, TMH began responding to an IT security issue in early February by taking its IT systems offline as a precaution. TMH diverted some EMS patients and rescheduled all non-emergency surgical and outpatient procedures as it continued to deal with the incident.

In its most recent update, TMH said it has transitioned back to electronic medical records rather than paper documentation and is no longer diverting EMS patients. TMH has also begun scheduling non-emergency surgeries and outpatient procedures.

“While we have returned to standard operations, we’d be remiss not to expect hurdles. We are a 772-bed hospital and a regional healthcare system with nearly 6,000 colleagues. Our systems and processes are vast and intricate, and we’ve brought them online strategically and securely to ensure the best possible care for our patients,” the notice stated.

“We apologize for any delays our patients may experience as we work through any issues that may arise. Outpatients with questions about their care should call their provider’s office. Inpatients should coordinate directly with their care teams and our Patient Experience Department.”

TMH is continuing to work with law enforcement to investigate the incident and credited its team for providing quality care throughout the event.

CentraState Healthcare System Provides Breach Notice

New Jersey-based CentraState Healthcare System posted a breach notification on its website following a December 2022 security incident. As previously reported, CentraState began experiencing an IT network issue on December 29 that forced the health system to revert to paper records and divert ambulances to other hospitals.

The breach notice stated that CentraState immediately engaged a forensics firm and began working with the Federal Bureau of Investigation (FBI) to investigate the incident. The investigation determined that an unauthorized party was able to obtain a copy of an archived database that stored select patient information.

The data involved in the breach varied by individual but may have included names, Social Security numbers, medical record and patient account numbers, addresses, dates of birth, health insurance information, dates of service, treatment plans, diagnoses, visit notes, prescription information, and physician names.

“CentraState is committed to the security of its patient information. We are continually enhancing the security of our electronic systems and the patient data we maintain to help prevent events such as this from occurring in the future,” the notice stated.

“CentraState appreciates law enforcement’s support on this matter and looks forward to continuing to provide care to its valued patients.”

CentraState began notifying patients of the breach on February 10 and offered complimentary credit monitoring services to those whose Social Security numbers were involved in the incident.

“Events of this nature are affecting an increasing number of companies in the U.S. and around the world, and federal government, law enforcement and industry experts are working in tandem to address this unlawful criminal activity,” the notice concluded.