Axis Health System, a nonprofit overseeing 13 facilities across southwest and western Colorado, has fallen victim to a cyberattack, disrupting services and raising concerns about patient data privacy. The attack has primarily affected the system’s patient portal, a critical platform for communication between patients and their healthcare providers.
The organization confirmed the incident via a statement on its website, although details remain scarce regarding when the breach occurred or the full extent of the impact. Axis Health System has initiated its incident response protocols and is working to halt the attack and assess the damage. The nonprofit has assured patients that if their personal data was compromised, they would be notified directly via mail.
As a result of the attack, the primary care patient portal has been taken offline, with officials urging patients to contact their healthcare providers by phone for any urgent needs.
The cyberattack has been attributed to the Rhysida ransomware gang, a group notorious for targeting hospital systems and governments. The gang has demanded a ransom exceeding $1.5 million to unlock the compromised data. Rhysida has been linked to several high-profile attacks on healthcare systems, including Prospect Medical hospitals and the governments of Columbus, Ohio, and Seattle, Washington.
Healthcare Devices at Risk
This breach comes as a stark reminder of the broader cybersecurity threats facing healthcare organizations. On the same day, a report from the security research firm Censys highlighted the exposure of healthcare devices and data systems to the public internet, leaving them vulnerable to cyberattacks.
The Censys report identified 14,004 unique IP addresses associated with healthcare devices and data systems that could potentially expose sensitive medical information. Of these, 36% were servers handling medical images, while 28% were linked to electronic health record (EHR) systems. Many of the exposed systems lacked proper security measures, such as firewalls or VPNs, putting patient data at risk of unauthorized access.
Notably, the report also flagged publicly exposed servers running DICOM (Digital Imaging and Communications in Medicine), a protocol for transmitting medical images like MRIs and CT scans. Many of these vulnerabilities were tied to independent radiology and pathology service providers, where accessibility has often been prioritized over security.
The Censys report emphasized that healthcare leaders and lawmakers need to implement stricter regulations, including mandating multi-factor authentication and limiting access to sensitive systems, to mitigate these risks. The vulnerability of healthcare systems is a growing concern as cyberattacks on hospitals, medical institutions, and government entities become more frequent and sophisticated.
Sponsored • TRJ Ads
Inquiries: contact@therealistjuggernaut.com
