Skip to Main Content

CommonSpirit Update

November 9, 2022

As previously shared, our teams continue to work diligently to bring systems online and restore full functionality as quickly and safely as possible, including electronic health records (EHRs). Providers in the majority of markets now have access to the EHR across the CommonSpirit Health system, including at hospitals and clinics. In addition, most patients can again review their medical histories through the patient portal and we are working to restore appointment scheduling capabilities to the portal in cases where that feature exists. In the meantime, patients should contact their provider’s office directly to schedule an appointment.

We care deeply about our patients and regret any challenges or frustration they may have experienced as a result of this incident. Thank you to our patients, providers, staff and partners as we continue navigating the response and restoration process.

What Happened

CommonSpirit Health has been managing a response to a cyberattack impacting some of our facilities. Providing the highest quality of care to our patients remains our utmost priority. This webpage provides relevant updates on the ongoing situation to our patients, employees and caregivers. We care deeply about our patients and regret any challenges or frustration they may have experienced as a result of this incident.

What We Did

Upon discovering the ransomware attack, the CommonSpirit organization quickly mobilized to protect our systems, contain the incident, begin an investigation, and maintain continuity of care. Impacted facilities have been following existing protocols, which included taking certain systems offline, such as electronic health records (EHR) and patient portals. It’s important to note that there has been no impact to clinic, patient care and associated systems at Dignity Health, Virginia Mason Medical Center, TriHealth or Centura Health facilities. 

What We’re Doing

For the parts of our health system that have seen impacts on operations, we’re working diligently every day to bring systems online and restore full functionality as quickly and safely as possible. Providers in the majority of markets now have access to the electronic health record (EHR) across the CommonSpirit Health system, including at hospitals and clinics.  In addition, most patients can again review their medical histories through the patient portal and we are working to restore appointment scheduling capabilities to the portal in cases where that feature exists. In the meantime, patients should contact their provider’s office directly to schedule an appointment.

To further assist and support our team in the investigation and response process, we engaged leading cybersecurity specialists and notified law enforcement. We recognize that our stakeholders may have questions about their data, and we continue to conduct a thorough forensics investigation and review of our systems – which, in part, seeks to determine if any data was impacted.

Our Commitment

Central to our decision-making has been and will continue to be our ability to carry out our mission in a manner that is safe and effective to those we serve. At CommonSpirit Health, we are dedicated to meeting the needs of the communities we serve and are guided by our core set of values, which include integrity, excellence, and collaboration. We are grateful to our committed staff and physicians, who are doing everything possible to mitigate the impact to our patients and maintain continuity of care.

See previous updates posted regarding this situation

Frequently Asked Questions (FAQs)

We have been managing a response to a cyberattack that has impacted some of our facilities. As previously shared, upon discovering the ransomware attack, we took immediate steps to protect our systems, contain the incident, begin an investigation, and maintain continuity of care.

Yes, our facilities are following existing protocols. Patient care remains our utmost priority. We care deeply about our patients and regret any challenges or frustration they may have experienced as a result of this incident. Thank you to our patients, providers, staff and partners as we continue navigating the response and restoration process.

Our facilities are following existing protocols. That includes steps to facilitate clinician and patient communication, document patient care, and support our caregivers in following safety processes and standards.

We continue to conduct a thorough forensics investigation and will seek to determine if there are any data impacts as part of that process.

 

Yes. Most patients can again review their medical histories through the patient portal and we are working to restore appointment scheduling capabilities to the portal in cases where that feature exists. In the meantime, patients should contact their provider’s office directly to schedule an appointment.

Scheduling appointments through the patient portal may be available in some markets, so patients who have that option can use it again.

For the parts of our health system that have seen impacts on operations, we are working diligently every day to bring systems online and restore full functionality as quickly and safely as possible. We will post relevant updates to our website (this page).

We will post relevant updates to our website (this page).

Central to our decision-making has been and will continue to be our ability to carry out our mission in a manner that is safe and effective to those we serve. At CommonSpirit Health, we are dedicated to meeting the needs of the communities we serve and are guided by our core set of values, which include integrity, excellence, and collaboration. We are grateful to our staff and physicians who are doing everything possible to mitigate the impact to our patients and maintain continuity of care. 

Vendor Verification

For vendors with a need to have additional technical specifications, please fill out the following form.