Sturgis Hospital, a rural critical access hospital in the Northern Black Hills in Michigan, has recently reported security incidents to the HHS’ Office for Civil Rights, both of which have potentially affected up to 77,771 individuals. The incident was identified in December 2024 when unauthorized activity was observed in part of its computer network. Based on the investigations, Sturgis Hospital concluded that there was potentially unauthorized access to patient and employee information and files containing sensitive patient and employee data may have been exfiltrated from its network.
Endless Mountains Health Systems in Montrose, Pennsylvania, experienced a suspected ransomware attack in March 2025. Many rural healthcare providers are struggling to remain viable, and in some cases are providing care well below the cost of providing their healthcare services. With limited funds available for cybersecurity and difficulties attracting skilled cybersecurity staff, they can be vulnerable to cyberattacks.
【MORE】