A major healthcare provider in the United States has temporarily closed all its clinic locations following a disruptive cyberattack. The University of Mississippi Medical Center (UMMC) confirmed that a ransomware incident forced it to shut down multiple IT systems while emergency protocols were activated to maintain patient care. Authorities at the federal level are now assisting with the investigation as the organization works to restore services.
Statewide Healthcare Network Disrupted
The University of Mississippi Medical Center is one of the largest employers in Mississippi, with more than 10,000 staff members. It manages seven hospitals, 35 clinics, and over 200 telehealth locations across the state.
The institution also operates Mississippi’s only children’s hospital, the state’s sole Level I trauma center, its exclusive organ and bone marrow transplant program, and one of only two Telehealth Centers of Excellence in the United States.
On Thursday afternoon, officials disclosed that the ransomware attack severely impacted their IT infrastructure. Critical systems, including access to Epic electronic medical records, were taken offline. As a precautionary measure, outpatient services, ambulatory surgeries, procedures, and imaging appointments were canceled across affected locations.
Despite these disruptions, hospital services continue through established downtime procedures designed to maintain operational continuity during IT outages.
Emergency Response and Federal Assistance
Following the discovery of the cyberattack, UMMC activated its Emergency Operations Plan. The organization is coordinating with the Cybersecurity and Infrastructure Security Agency and the Federal Bureau of Investigation to investigate the breach and determine recovery steps.
Hospital officials confirmed that all network systems were intentionally shut down to assess the full extent of the compromise. Risk assessments are being conducted before restoring services. At the time of reporting, the medical center’s website remained offline.
Leadership emphasized that clinical equipment continues to function normally. Patients in hospitals and emergency departments are receiving care, and in-person classes for students remain on schedule.
Ransomware Group in Contact
During a press briefing, UMMC representatives acknowledged that the threat actors behind the ransomware attack have established communication with the institution. According to leadership, discussions are ongoing while authorities and cybersecurity specialists evaluate potential next steps.
LouAnn Woodward, dean of the School of Medicine, stated that the timeline for full recovery remains uncertain. Another senior official, Dr. Alan Jones, reassured the public that patient safety remains intact and that no immediate patient impact has resulted from the IT downtime.
At present, no known ransomware group has publicly claimed responsibility for the incident. Experts note that attackers often delay public claims while negotiating ransom demands. In many ransomware cases, threat actors also exfiltrate sensitive data to increase pressure on victims, raising concerns about potential data exposure.
Broader Cybersecurity Implications for Healthcare
This ransomware attack highlights ongoing cybersecurity risks within the healthcare sector. Hospitals and medical centers are increasingly targeted due to their reliance on digital systems and the sensitive nature of patient data.
Disruptions to electronic medical records and clinical scheduling systems can significantly affect operational workflows. Although downtime procedures help ensure continuity of care, prolonged outages can create administrative and financial strain.
Healthcare organizations must continue strengthening cyber resilience strategies, including network segmentation, offline backups, endpoint detection, incident response planning, and regular security audits.
Found this article interesting? Follow us on X (Twitter) , Facebook, Blue sky and LinkedIn to read more exclusive content we post.
