A Devastating Cyberattack Hits Hospitals Operated by Covenant Health
Three hospitals operated by Covenant Health were recently targeted by a cyberattack, forcing the organization to shut down all systems in an effort to contain the security incident.
Covenant Health Systems is a non-profit Catholic regional healthcare system that sponsors hospitals, nursing homes, assisted living residences, and other health and elder services throughout New England. The organization's commitment to providing high-quality care to its patients was put to the test on May 26, 2025, when it became aware of irregularities impacting connectivity across its network.
Out of an abundance of caution, Covenant Health immediately discontinued access to all data systems in its hospitals, clinics, and provider practices. This decision was made in an effort to protect sensitive patient information and prevent any potential further compromise.
The affected hospitals include St. Mary's Health System, St. Joseph Hospital in New Hampshire, and two Maine hospitals. While the organization is working to contain the incident, some systems and outpatient labs are currently unavailable due to the cyberattack.
Impact on Patients
Patients are advised to keep their appointments as scheduled, despite the disruption caused by the cyberattack. However, some patients may experience longer wait times in certain areas, such as documentation systems or outpatient labs.
"St. Mary's is currently experiencing a temporary system issue that is affecting some phones and documentation systems," reads the message published by St. Mary's Health System. "Care is continuing, but this may lead to longer wait times in some areas."
Similarly, St. Joseph Hospital has announced that it will be adjusting its outpatient lab services due to a temporary system issue. Labs will only be available at the main hospital campus, and services can be provided only with a physical order in hand.
A Growing Concern for Healthcare Organizations
Cyberattacks on healthcare organizations have become increasingly common in recent years. In 2025, multiple cyberattacks targeted healthcare organizations in the U.S., resulting in significant breaches of sensitive patient data.
In March, the RansomHouse gang announced the hack of Loretto Hospital in Chicago, claiming to have stolen 1.5TB of sensitive data. In April, The Interlock ransomware gang claimed responsibility for the attack on DaVita, a leading kidney dialysis company, and leaked alleged stolen data.
Ransomware attacks on U.S. healthcare providers surged in 2024, with 98 attacks compromising 117 million records. Hospitals often face system lockdowns, forcing a switch to manual processes.
A Lesson in Cybersecurity for Healthcare Organizations
The recent cyberattack on Covenant Health serves as a reminder of the importance of robust cybersecurity measures in protecting sensitive patient information.
"On Monday, May 26, Covenant Health became aware of irregularities impacting connectivity across the organization," said the spokesperson. "We immediately discontinued access to all data systems in our hospitals, clinics and provider practices."
At this time, it's unclear whether data was stolen or ransomware was employed. However, one thing is certain: healthcare organizations must prioritize cybersecurity to protect their patients' sensitive information.
The Importance of Patient Safety
Patients are the top priority for healthcare organizations like Covenant Health. The recent cyberattack highlights the need for these organizations to have robust cybersecurity measures in place to prevent breaches and protect patient data.
While some systems and outpatient labs may be unavailable due to the cyberattack, patients can rest assured that care is continuing as normal. The organization is working to provide healthcare services with minimal disruption.
"We are working to provide healthcare services as normal," said the spokesperson. "Patients are encouraged to keep all appointments. If patients have questions, they should contact their provider's office."