Ransomware Attack Hits Ascension, Exposing Data of 5.6 Million Patients and Employees

Ascension, one of the largest nonprofit health systems in the U.S., says a spring ransomware attack exposed data from about 5.6 million people. The breach ranks as the third largest healthcare data breach reported this year, following incidents at Change Healthcare and Kaiser Foundation Health Plan.

The attack took place in early May. It forced some Ascension facilities to divert ambulances and shut down key systems, including electronic health records. Ascension traced the breach to an employee who accidentally downloaded a malicious file. A group known as Black Basta is believed to be behind the incident.

The compromised information may include medical data, payment details, Social Security numbers, and insurance info. Ascension says it has found no proof that full patient records stored in its electronic systems were stolen. But the organization still plans to mail letters to all affected individuals within the next few weeks.

Ascension’s finances took a hit due to the attack. In its 2024 fiscal report, the provider posted a $1.1 billion net loss and said the ransomware incident slowed its improvement efforts. The health system has since restored all impacted systems and says it is offering credit monitoring and identity theft protection to those affected.

This breach comes in a year of major healthcare cyber incidents. An attack on UnitedHealth-owned Change Healthcare earlier this year exposed data from 100 million people, making it the largest on record in the healthcare sector. Ascension’s case serves as a reminder that hospitals and clinics remain prime targets for cybercriminals seeking sensitive data.

Staying Protected

With breaches like this becoming more common, many are turning to data removal services to better safeguard their personal information. Services like Incogi, which work with over 180 data brokers and scan every 10 days, are helping individuals clean up their online footprint and reduce exposure.