CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Ransomware attack disrupts University of Mississippi Medical Center operations

First reported
Last updated
2 unique sources, 3 articles

Summary

Hide ▲

The University of Mississippi Medical Center (UMMC) has resumed normal operations nine days after a ransomware attack disrupted IT systems and blocked access to electronic medical records. All clinics statewide have reopened, and UMMC is working to reschedule missed appointments. The attack led to the cancellation of outpatient procedures, ambulatory surgeries, and imaging appointments, but hospital operations continued using downtime procedures. UMMC is investigating with assistance from CISA, the FBI, and the Department of Homeland Security. The attackers have communicated with UMMC, but no ransomware group has claimed responsibility. UMMC operates seven hospitals, 35 clinics, and over 200 telehealth sites statewide, including the state's only organ and bone marrow transplant program, the only children's hospital, the only Level I trauma center, and one of two Telehealth Centers of Excellence in the United States.

Timeline

  1. 04.03.2026 17:28 1 articles · 23h ago

    UMMC resumes normal operations after ransomware attack

    On March 3, 2026, the University of Mississippi Medical Center (UMMC) resumed normal operations nine days after a ransomware attack disrupted its IT systems. All clinics statewide reopened, and UMMC began rescheduling missed appointments. The attack led to the cancellation of outpatient procedures, ambulatory surgeries, and imaging appointments, but hospital operations continued using downtime procedures. UMMC is investigating with assistance from CISA, the FBI, and the Department of Homeland Security. The attackers have communicated with UMMC, but no ransomware group has claimed responsibility.

    Show sources
    Open in new tab
  2. 20.02.2026 13:50 3 articles · 13d ago

    University of Mississippi Medical Center hit by ransomware attack

    On February 20, 2026, the University of Mississippi Medical Center (UMMC) suffered a ransomware attack that disrupted IT systems and electronic medical records. The attack led to the closure of all clinics statewide, but hospital operations continued using downtime procedures. UMMC is investigating with assistance from CISA, the FBI, and the Department of Homeland Security. The attackers have communicated with UMMC, but no ransomware group has claimed responsibility. All clinics will remain closed on February 23 and 24, with elective procedures cancelled and appointments rescheduled where possible. Hospitals and emergency departments in Jackson, Grenada, Madison County, and Holmes County remain open using downtime procedures. UMMC resumed normal operations nine days after the ransomware attack. UMMC clinics resumed normal operations on March 3, 2026, and will be open extended hours and extra days to accommodate patients. UMMC's phone lines are back online, and patients are being called to reschedule missed appointments. UMMC's medical teams ensured continuity of high-quality care during the attack, and the Division of Information Systems worked around the clock to bring the network back online.

    Show sources
    Open in new tab

Information Snippets

Similar Happenings

Synnovis Ransomware Attack Data Breach Notification Delayed Over a Year

Synnovis, an NHS pathology provider, has begun notifying clients about the extent of data stolen in a June 2024 ransomware attack by a Qilin affiliate. The attack led to blood supply shortages, cancellation of thousands of medical appointments, and at least one fatality. The breach affected approximately one million patients, with data including patient names, NHS numbers, and blood test descriptions. The notification process, delayed due to the complexity of the investigation, is expected to be completed by November 21, 2025. Experts have criticized the 17-month delay, citing poor data management and inadequate incident response.

Open in new tab

Wayne Memorial Hospital Ransomware Attack Affects 160,000 Individuals

Wayne Memorial Hospital (WMH) in Georgia has disclosed a ransomware attack that compromised the personal and medical information of over 160,000 individuals. The breach occurred between May 30 and June 3, 2024, and involved the encryption of hospital systems and the theft of sensitive data. The hospital identified the incident on June 3, 2024, and has since taken steps to secure its network and notify affected individuals. The compromised data includes names, dates of birth, Social Security numbers, medical history, and prescription details. The hospital has engaged legal counsel and cybersecurity professionals to investigate the attack and has provided affected individuals with 12 months of free credit monitoring and identity theft protection services.

Open in new tab

Pennsylvania Attorney General's Office Hit by INC Ransom Ransomware Attack with Data Breach

The Pennsylvania Attorney General's Office has confirmed a ransomware attack that began on August 11, 2025, lasting three weeks. The attack resulted in a service outage affecting the AG's website, email, and phone systems. The AG office refused to pay the ransom and is currently investigating the incident with other agencies. The impact includes disruptions to court proceedings, though the AG office assures that criminal prosecutions and investigations will not be affected. The extent of data exfiltration, if any, remains unknown. The AG's office has confirmed the use of file-encrypting ransomware and that the attack was carried out by an outsider attempting to extort payment. The AG office has not disclosed any details about the ransomware group responsible. Partial recovery of email and phone services has been achieved, with staff operating through alternate methods. The ransomware gang INC Ransom has claimed responsibility for the attack, alleging the theft of 5.7TB of files and access to an FBI internal network.

Open in new tab

Ransomware in Healthcare: Spillover Effects on Surrounding Hospitals

Ransomware attacks on healthcare organizations cause significant disruption beyond the targeted institution, affecting surrounding hospitals and entities. These attacks lead to diverted ambulances, increased patient volume, and potential long-term health effects for patients. The impact is particularly severe in rural communities and can result in fatal outcomes. Healthcare organizations must prioritize cybersecurity measures, including multifactor authentication (MFA) and basic cyber hygiene, to mitigate these risks. The healthcare sector faces unique challenges due to the presence of legacy systems, resource constraints, and the critical nature of patient care operations. Ransomware attacks can block access to essential systems, preventing patients from receiving vital care. The spillover effects of such attacks can lead to overcapacity at surrounding hospitals, delayed treatments, and increased strain on healthcare resources. Health-ISAC tracked nearly 6,000 ransomware events across critical infrastructure organizations in 2024, with 446 specifically in healthcare. In the first half of 2025, 4,159 cases were recorded across all sectors, indicating a persistent and growing threat.

Open in new tab