Ransomware: Hospital Avoids Diversion, Maintains Continuity of Care

by | Sep 12, 2019

Original publication date: May 19, 2017. Updated September 12, 2019.

hospital-ransomware-cyberattack-emergency-managementWith hospital ransomware making headlines worldwide and disrupting care, many healthcare delivery organizations are taking a closer look at hospital communication systems and cybersecurity[i] and the role they plays in continuity of operations planning (COOP).

Ransomware is one of the hazards hospitals should consider when developing emergency preparedness and response plans — including hazard vulnerability assessments (HVAs) and communication plans — to meet the compliance requirements of the CMS emergency preparedness rule and other emergency management requirements.

Across the world, hospitals and healthcare systems were hit by widespread ransomware and other cyberattacks in 2017[ii]. When a hospital’s computer systems and networks become unavailable due to a ransomware attack, the LiveProcess emergency management system, a cloud-based software as a service (SaaS), stays available as a hospital communication system to help the hospital achieve situational awareness and to mobilize and coordinate an emergency response.

When this U.S. hospital was hit by a ransomware attack, they were prepared with the LiveProcess emergency management system already in place. LiveProcess remained fully functional and accessible, even when other systems failed.

With the LiveProcess emergency management system, personnel inside and outside the hospital are connected and ready to respond under even the most chaotic conditions, including a ransomware attack.

Throughout the ransomware attack, the hospital was able to share information, notify executive leadership, and keep staff up to date.

Situational awareness achieved

The hospital’s LiveProcess administrator immediately initiated an event log, creating a virtual hospital command center, and requested updates from every department, including operationally critical groups such as the ICU, inpatient floors, outpatient services, imaging, pharmacy, laboratory and payroll.

From its virtual command center, the hospital emergency management team mapped the outages, tracked issues and determined which departments needed to implement downtime procedures and default to paper-based backup.

Hospital’s emergency response coordinated

With the event log as the playbook, the emergency management team monitored recovery efforts in real time and allocated resources to assist with getting systems back online. Hospital leadership was kept closely informed throughout the outage, and the minutes of executive-level meetings were tracked in the event log.

The staff was updated regularly using the multi-way communication capability of the LiveProcess system, with IT providing up-to-the-minute guidance on how to bring affected devices and systems back onto the network, thereby reducing calls to the help desk.

Continuity of care maintained

The use of LiveProcess emergency management system enabled the hospital to avoid going on diversion or canceling scheduled surgeries during the ransomware attack. Although ransomware and other kinds of malware can paralyze a healthcare system, this hospital maintained continuity of care by coordinating its response with LiveProcess’s two-way multi-modal communications, and by leveraging its information aggregation capability to the hospital’s benefit.

Our solutions

LiveProcess Emergency Manager is a proven system for emergency preparedness planning, mass notification and mobilization, real-time coordination and tracking. Hospitals and health systems, ambulatory centers, skilled nursing facilities, long-term care organizations, home health agencies, and public agencies use Emergency Manager to prepare for and respond to disaster events and for everyday disruptions.

Email this to a friend.

What’s next?

terry-zysk-100x100Terry Zysk, CEO of LiveProcess, has more than two decades of experience in leading organizations that provide innovative solutions to the healthcare industry.


i How US Healthcare Spent the Weekend Protecting against WannaCry.” Healthcare IT News. N.p., 16 May 2017. Web. 17 May 2017.

ii The Biggest Healthcare Breaches of 2017 (so Far).” Healthcare IT News. N.p., 15 May 2017. Web. 17 May 2017.