Prevea Health temporarily closed its clinics and urgent care facilities across Wisconsin on Wednesday, April 17, 2024, following a widespread IT security incident. The health system confirmed that the disruption was caused by an unauthorized third party accessing its network, necessitating a complete shutdown of operations to contain the threat and protect patient data.
Scope of the Prevea Health System Shutdown
The outage forced the immediate closure of all Prevea Health locations, including primary care clinics, urgent care centers, and specialty services. According to an official statement released by the organization, the decision to go offline was a proactive measure intended to mitigate the impact of the cyberattack. Patients with scheduled appointments during the closure were notified that their visits would need to be rescheduled once systems were restored.
Response to the Cyberattack and Patient Impact
Prevea Health worked alongside third-party cybersecurity experts to investigate the scope of the unauthorized access. During the downtime, the health system suspended all electronic health record (EHR) access, effectively halting digital prescribing, appointment scheduling, and patient portal functions.
While the organization advised patients experiencing medical emergencies to seek care at the nearest emergency department or call 911, the closure created significant disruptions for those seeking non-emergency care. The health system prioritized the security of its infrastructure, stating that the restoration of services would occur in phases as forensic teams verified the integrity of their network.
Understanding Healthcare Data Security Risks
The incident at Prevea Health is part of a broader trend of cybersecurity threats targeting the healthcare sector. According to the Department of Health and Human Services (HHS), healthcare providers are frequent targets for ransomware and data breaches due to the high value of protected health information (PHI) on the black market.
When a provider experiences a network compromise, the standard protocol involves isolating affected systems to prevent the potential spread of malware. This often leads to temporary service interruptions, as seen in this case, to ensure that clinicians can eventually resume care using systems that have been cleared of malicious activity.
Status of Services and Patient Guidance
As of the most recent updates following the April 2024 incident, Prevea Health has focused on restoring its digital infrastructure. Patients are encouraged to monitor the official Prevea Health website for real-time announcements regarding the reopening of specific clinics and the restoration of online patient services.
If you are a patient concerned about the security of your records, the Federal Trade Commission (FTC) provides guidance on how to monitor your personal information and credit reports following a health data breach. Prevea Health continues to coordinate with law enforcement and cybersecurity professionals to address the incident and prevent future unauthorized access.
Worth a look