Skip to main content
Center for Healthcare Cybersecurity Center for Healthcare Cybersecurity
  1. HOME
  2. Media
  3. In the News

In the News

2026

Mississippi Free Press Surgeries Canceled, Clinics Closed After University of Mississippi Medical Center Hit by Ransomware Attack

Published on: February 19, 2026

The University of Mississippi Medical Center confirmed a ransomware attack disrupted its IT network and forced widespread clinic closures and service cancellations statewide. Emergency services remained available under downtime procedures, while officials worked to restore systems and assess the scope of the intrusion. The story also highlights how ransomware-driven outages can create regional patient safety impacts and prolonged operational disruption.

Read the article

Mississippi Today Expert says UMMC could face “weeks to months” of recovery after cyberattack

Published on: February 25, 2026

Following a Feb. 19 cyberattack, the University of Mississippi Medical Center shut down systems supporting electronic health records, canceled elective procedures, and closed clinics statewide while recovery is underway. A healthcare cybersecurity expert notes that rebuilding and securing hospital infrastructure after a sophisticated ransomware-style intrusion can take weeks to months, and the operational impacts can ripple to nearby hospitals as patient demand shifts.

Read the article

Hack the Plan[e]t Episode 50 Episode 50: Systems Engineering for Survival: A Physician’s Guide to Emergency Management

Published on: February 17, 2026

In this Hack the Plan[e]t episode, host Bryson Bort talks with Dr. Natalie Sullivan (Emergency Response Medical Group) about emergency management as “systems engineering” for hospitals. Drawing on her experience working through a prolonged ransomware incident, she breaks down preparedness, mitigation, response, and recovery, and why regional coordination, downtime planning, and training matter when tightly coupled systems (EHR, medical devices, power, water) fail.

Listen to the podcast

beyond the blueprint Cybersecurity as Patient Safety: A 2026 CMIO Playbook - Dr. Christian Dameff, Steven Ramirez, Dr. Sean Kelly

Published on: January 19, 2026

When ransomware hits, it’s not an IT headache—it’s canceled surgeries, delayed diagnoses, and real patient harm. In this episode, Dr. Sean Kelly (Imprivata), Dr. Christian Dameff (UC San Diego Health), and Steven Ramirez (Renown Health) lay out what actually works: clinical-ready downtime playbooks, smarter training, and the identity protections that keep care moving when systems go dark.

Listen to the Podcast

2025

UC San Diego TodayHospitals can bounce back from cyberattacks in hours, not weeks, UC San Diego team shows

Published on: October 21, 2025

In a groundbreaking demonstration, researchers from UC San Diego’s Center for Healthcare Cybersecurity unveiled Project CRASHCART — a “hospital IT system in a box” built to restore critical digital infrastructure after ransomware strikes. The portable platform can re-establish electronic health records, lab systems, and communications networks in hours instead of weeks, potentially saving lives and millions in downtime losses. Backed by ARPA-H’s Healthcare Ransomware Resiliency and Response Program, the project underscores UC San Diego’s leadership in protecting patients and national healthcare systems from digital threats. Read the full story to see how the team is redefining hospital cyber resilience.

SC Media logoPhishing training is pretty pointless, researchers find

Published on: August 9, 2025

In an eye‑opening presentation at Black Hat, researchers from UC San Diego’s Center for Healthcare Cybersecurity revealed that traditional employee phishing training barely moves the needle, with an average effectiveness improvement of just 1.7% over eight months across thousands of participants. They argue this raises urgent questions about the real-world value of such programs in bolstering organizational security.  Read the full article to see why the researchers think it’s time to rethink phishing defense.

WIRED logoStudy Estimates 750+ U.S. Hospitals Disrupted by 2024 CrowdStrike Outages

Published on: July 19, 2025

A new study highlights the sweeping impact of the 2024 CrowdStrike outage on the U.S. healthcare system, estimating that at least 750 hospitals experienced disruptions. Researchers stress the urgent need for resilient healthcare IT infrastructure to protect patient care during technology failures. Read the full article to learn how the outage unfolded and what experts say must change.

Gist logo CHSCC Makes Bold Cyber Rx Move Before Congress

Published on: April 18, 2025

When hospitals get hacked and Congress finally listens, it’s worth tuning in. In this episode, Donna and David from Help Me With HIPAA break down the HSCC’s bold cybersecurity proposals, including Dr. Christian Dameff’s testimony before Congress on why legacy tech is one of healthcare’s biggest vulnerabilities.

Listen to the Podcast

Imprivata logoThe dangerous ripple effects of ransomware attacks on patient safety

Published on: April 22, 2025

A ransomware attack on one hospital can endanger patients across an entire region, Dr. Sean Kelly breaks down the data and why it’s time to treat healthcare cyber threats like regional disasters.  Read the full article to see what the numbers reveal and why urgent action is needed .

Healthcare Finance News logoMedical device cybersecurity could be challenged by HHS staffing cuts

Published on: April 2, 2025

In a charged House hearing, experts warned that outdated hospital devices and massive HHS staffing cuts are leaving patients dangerously exposed.  In this article, learn more about why policymakers are raising red flags.

Security Management logoExperts Tell Congress Lack of Tracking Creates Cybersecurity Gaps for Medical Devices

Published on: April 2, 2025

Outdated medical devices are putting patient lives at risk, and experts say the problem is growing. Dr. Christian Dameff and others sounded the alarm before Congress. Read why this could be healthcare’s next big crisis.

AHA logoHouse subcommittee holds hearing on cybersecurity vulnerabilities in legacy medical devices

Published on: April 1, 2025

Outdated medical devices aren’t just a tech headache—they’re a ticking time bomb. In a House subcommittee hearing, Dr. Christian Dameff and other top experts warned that legacy equipment poses life-or-death risks to patients and national security. From backdoor threats to systemic vulnerabilities, here’s why Congress is finally paying attention .

MedPage Today logoCybersecurity Threats Remain a Problem for Older Medical Devices, House Members Say

Published on: April 1, 2025

Legacy medical devices are putting lives at risk, and federal cuts could make it worse. In a gripping House hearing, Dr. Christian Dameff and other experts warned that outdated tech, staff shortages, and policy gaps are creating a perfect storm for healthcare cybersecurity. Find out what's at stake and why urgent action is needed.

HealthTech logoUnderstanding Healthcare Cybersecurity as an Ecosystem

Published on: March 6, 2025

Amid rising cyber threats, healthcare leaders say AI isn’t the only tech challenge; staffing gaps and lack of strong partnerships are putting systems at risk. Discover why building cybersecurity talent is now mission-critical.  

Gist logo Continuing the Conversation: Why Hospitals and Healthcare Organizations May Want to Prioritize Resiliency Over Prevention in Cyberattacks

Published on: April 7, 2025

In part two of this compelling series, Dr. Christian Dameff returns to explore why building resilience, not just prevention, may be the key to surviving healthcare cyberattacks. From the fallout of the Change Healthcare breach to the future of federal policy, this episode tackles what hospitals need to know now.

Listen to the Podcast

Gist Podcast Logo Why hospitals and healthcare organizations may want to prioritize resiliency over prevention in cyberattacks

Published on: March 31, 2025

In the first part of this two-part series, Dr. Christian Dameff reveals why healthcare tops the list for cyberattacks—and unpacks the surprising truths about who’s really behind them and why.

Listen to the Podcast

SoundCloud Episode World Association for Disaster and Emergency Medicine – A Prescription for Securing Medicine’s Digital Frontier - Dr. Christian Dameff

Published on: March 18, 2025

Dr. Christian Dameff joins Dr. Ryan Hata to talk cyber threats in health care—and gives a sneak peek at the upcoming “Safeguarding Health Care” workshop at the 23rd Congress on Disaster and Emergency Medicine in Tokyo this May.

Listen to the Podcast

SoundCloud Episode Rethinking Cybersecurity: Dr. Jeff Tully Brings a Clinician’s Perspective to IU

Published on: January 23, 2025

Dr. Jeff Tully recently visited Indiana University to share how his team is rethinking healthcare cybersecurity—from large-scale phishing experiments to real-time hospital outage detection. His perspective as both a physician and cybersecurity researcher offers a fresh take on what actually works.

Read more and watch the full talk.

2024

On Point, WBUR Boston On Point, WBUR Boston – When ransomware hijacks your healthcare

Published on: July 4, 2024

Hospitals under siege: As ransomware attacks cripple care and compromise data, CHC co-director Dr. Jeff Tully sounds the alarm—can the healthcare system defend itself before lives are lost?

Read more and listen to the podcast.

Mid-Michigan Now Mid-Michigan Now – Cybersecurity expert warns of increasing cyber threats to healthcare systems

Published on: August 12, 2024

Cyberattacks are hitting hospitals close to home—CHC’s Dr. Jeff Tully explains why healthcare is a prime target and what’s at stake when technology fails.

Read more and listen to the podcast.

KSHB NBC LogoCybersecurity Incident at Liberty Hospital Highlights Ongoing Risks for Healthcare

Published on: 2024

A recent cyber incident at Liberty Hospital disrupted operations and raised fresh concerns about the vulnerability of healthcare facilities to digital threats. Hospital leaders say the attack underscores the emotional and operational toll such events take on staff, patients, and the broader community. Read the full article to see how the incident unfolded and why hospital leaders say the threat is far from over.

Newsday LogoNew Federal Rules Aim to Curb Ransomware Attacks on Hospitals

Published on: 2024

In response to rising ransomware threats, federal officials are rolling out tougher cybersecurity requirements for hospitals. The measures target critical vulnerabilities and aim to strengthen defenses, but some in the industry warn that compliance costs could pose new challenges. Read the full article to learn what the new rules require—and how they could reshape hospital cybersecurity.

2023

NPR All Things Considered NPR All Things Considered – A cyberattack on one hospital can disrupt an entire network of medical providers

Published on: June 19, 2023

When a cyberattack hits one hospital, the entire medical network feels the shock—Dr. Jeff Tully and fellow researchers reveal the ripple effects that put patient lives at risk.

Read more and listen to the podcast.

ABC News LogoCyberattacks on Hospitals Pose Growing Threat to Patient Safety

Published on: May 10, 2023

Experts warn that cyberattacks on hospitals are escalating in frequency and impact, delaying care, disrupting critical systems, and putting patient lives at risk. As attackers target vulnerable healthcare networks, calls are mounting for stronger defenses and coordinated national response efforts. Read the full article to see how these attacks unfold and why experts say the stakes have never been higher for patient safety.

2020

SC Media Logo Ransomware Death Drives Home Why Hospitals Must Treat Cyber Disasters as Life-Threatening Emergencies

Published on: September 23, 2020

A tragic incident in Düsseldorf—where a patient died, in part due to a ransomware‑caused systems failure—underscores a critical lesson: hospitals must invest in redundancy and cybersecurity training or face dire consequences. Experts argue that without treating cyber threats as true emergencies, hospitals risk repeating such devastating outcomes.  Read the full article to understand how emergency preparedness can save lives—and why hospitals can’t afford to delay.

Ars Technica Logo Why Healthcare Remains Target for Cyberattacks

Published on: 2020

Despite years of warnings, the healthcare industry continues to lag in cybersecurity readiness, leaving hospitals, clinics, and patient data vulnerable to costly and dangerous breaches. Experts point to outdated systems, complex regulations, and chronic underinvestment as persistent barriers to progress. Read the full article to learn why healthcare struggles to close the cybersecurity gap—and what needs to change to protect patients.

2017

ABC Nightline ABC Nightline – Fears of hackers targeting hospitals, medical devices

Published on: June 29, 2017

"Nightline" was on-site for the first-ever hospital cyber attack simulation designed to help doctors prepare for what cybersecurity experts say is a very real threat.

Stream the video.