On April 6, patients at Brockton Hospital in Massachusetts were unable to receive chemotherapy treatments due to a cyberattack that disrupted the hospital's information systems. Emergency services faced significant challenges, including the closure of the emergency room and the diversion of ambulances, with hospital staff reverting to manual record-keeping.
This incident highlights a troubling trend; the Ascension ransomware attack in May 2024 affected 136 hospitals for six weeks, while the Change Healthcare breach compromised data for over 100 million Americans, severely impacting billing and authorization systems. A survey by the AHA indicated that 74% of hospitals reported adverse effects on patient care as a result of the Change Healthcare incident.
Experts caution that such attacks could escalate, placing patients at risk of missed appointments for critical treatments and hampering emergency care. The escalating arms race between healthcare systems and cyber threats is compounded by the rapid evolution of technology, which not only aids in drug discovery but also allows for the swift detection of software vulnerabilities. Meanwhile, Anthropic has introduced Claude Mythos Preview, an AI model designed to identify and exploit these vulnerabilities, yet health care organizations remain excluded from its $100 million Project Glasswing initiative aimed at enhancing software security.