Here's the latest on what we know about the cybersecurity attack on HSHS systems

Steven Spearie, Springfield State Journal- Register
Updated ·3 min read
The Springfield-based Hospital Sisters Health System.
The Springfield-based Hospital Sisters Health System.

While most phone systems are working around the Hospital Sisters Health System, representatives still haven't said whether patient medical records have been compromised by a recent cybersecurity attack.

Damond W. Boatwright, president and chief executive of the Springfield-based health system, confirmed the attack in a video posted to an HSHS website. According to Boatwright, HSHS is working with law enforcement on about the incident, which was first reported on Aug. 27.

HSHS chief executive confirms system-wide outage was caused by 'cybersecurity incident'

As the outage begins its second week, here are some things to know:

Are HSHS hospitals, emergency rooms, and clinics open?

Most HSHS sites around Illinois and Wisconsin remain open, though there are some individual closures in Southern Illinois due to the outage. HSHS St. John's Hospital in Springfield and HSHS St. Francis Hospital in Litchfield have not reported any closures. None of the HSHS clinics in Springfield have closed.

What is still affected by the outage?

Workers are still trying to restore the clinical, administrative and communications systems that were impacted by the attack, including MyChart communication, which helps patients schedule, manage, and check in for appointments; message care teams; pay bills; get test results and after-visit instructions and request prescription refills.

HSHS reported that nearly all its hospital and clinic phone lines were back in service, though service could be intermittent while the system is still seeing some connectivity issues. Email also is functioning.

Patient billing services remain suspended.

Hospital Sisters Health System President and Chief Executive Officer Damond W. Boatwright
Hospital Sisters Health System President and Chief Executive Officer Damond W. Boatwright

Is there a timeline for restoring the downed systems?

HSHS said it is working "diligently" and "making steady progress" to bring all of its systems back online though an update posted to its website Monday evening didn't mention a timeframe.

What about scheduling appointments?

HSHS recommends contacting the provider or reaching out to the HSHS hospital to verify appointment dates and times.

The healthcare provider will contact patients to reschedule canceled appointments as soon as it can.

What about refilling prescriptions?

HSHS posted that its inpatient pharmacy was successfully operating during the outage. The outpatient HSHS St. John’s Community Pharmacy is still unable to access or fill digital prescription orders. Patients are being urged to contact their provider to get an alternative pharmacy.

Some HSHS hospitals are providing patients with written prescriptions to take to the pharmacy of their choice.

What about contacting home health or hospice nurses?

Nurses will call patients the night before or the morning of scheduled visits. Patients needing to reach home health or hospice nurses can call (800) 551-6566. The number is available 24 hours/7.

What about payment collection or suspicious-looking bills?

HSHS isn't collecting payments from patients for outstanding bills. Patients will be notified when billing processes are functioning. However, HSHS said some of its system partners are sending out bills to patients.

HSHS reported last week that patients were receiving emails, texts, and phone calls from parties claiming to be HSHS representatives seeking payment for services. It said patients should not respond to any suspicious-looking messages. HSHS is asking patients to save correspondence so it can track and investigate the source. Information should be forwarded to questions@hshs.org.

Has any patient information been compromised?

HSHS posted that the investigative process into "the scope of the incident is ongoing and will take time to complete. If we determine any patients’ sensitive, personal information is involved, we will notify them in accordance with applicable law."

Who is investigating the incident?

HSHS confirmed that federal agencies were involved in the investigation.

Rebecca Cramblit, a public affairs officer for the FBI Springfield, said "per FBI policy, we cannot confirm or deny whether we are or are not conducting an investigation. This policy protects the integrity of the investigation as well as any associated victims and the judicial process."

According to a post, the FBI is the lead federal agency for investigating cybersecurity attacks.

Where do I go for information?

HSHS has a dedicated page for updates at www.hshsupdates.org.

Contact Steven Spearie: (217) 622-1788; sspearie@sj-r.com; X, twitter.com/@StevenSpearie.

This article originally appeared on State Journal-Register: HSHS continuing to address cybersecurity breaches