UPDATE (6/13/24) — Ascension St. John said the company has made progress in its investigation and recovery after a cyberattack.
An Ascension spokesperson released the following update on Wednesday:
“We have made progress in our investigation and recovery with the help of third-party cybersecurity experts. At this point, we now have evidence that indicates that the attackers were able to take files from a small number of file servers used by our associates primarily for daily and routine tasks. These servers represent seven of the approximately 25,000 servers across our network. Though we are still investigating, we believe some of those files may contain Protected Health Information (PHI) and Personally Identifiable Information (PII) for certain individuals, although the specific data may differ from individual to individual.”
The spokesperson said they have also identified how the attacker gained access to their systems.
“An individual working in one of our facilities accidentally downloaded a malicious file that they thought was legitimate. We …