Were You Affected by UMMC’s Healthcare Ransomware Attack? Here’s What You Need to Know

The recent ransomware attack on the University of Mississippi Medical Center has left many patients uncertain about the security of their personal information and the continuity of their medical care. With clinics and records systems disrupted, patients are rightfully concerned about their next steps. In this blog, we delve into how UMMC has worked to restore operations, what patients need to be aware of to protect themselves from related scams, and the measures UMMC is taking to ensure patient data is secure. Read on to learn about crucial steps for safeguarding your health information and how the medical center is supporting its community through this crisis.

UMMC's Response and Restoration Efforts

Right after the ransomware attack struck, the University of Mississippi Medical Center (UMMC) acted fast to respond and start its recovery. UMMC’s IT and administration teams launched into action to contain the breach, isolate affected systems, and assess the scale of the cyberattack. The immediate priority: safeguard patient care and health data while restoring critical services.

Recovery Timeline and Steps Taken

The first signs of disruption surfaced as UMMC clinics, appointment scheduling, and electronic records systems were temporarily knocked offline. Within hours, backup operations kicked in. Teams at UMMC worked round-the-clock, prioritizing critical areas such as the emergency department and ongoing inpatient care. Although some outpatient appointments were rescheduled, urgent cases and in-hospital treatments continued without interruption.

UMMC’s ransomware recovery timeline included the following key steps:

1. Cybersecurity Containment: Network segments were isolated to prevent spread and protect further patient data.
2. Manual Operations Initiated: Clinics reverted to manual check-ins and paper-based processes to maintain patient flows.
3. Stakeholder Communication: UMMC provided clear updates to patients and staff, giving real-time feedback about clinic hours and any alterations in care protocols.

During system restoration, UMMC clinics maintained open lines for both phone-based and in-person communications regarding appointments. Patients were encouraged to call ahead and verify the status of their upcoming visits or lab results.

Clinic Operations Post-Attack

Most clinics saw increased wait times and adjusted scheduling, but frontline care never stopped. Medical records staff and care teams coordinated closely to reconcile paper and digital information as systems came back online. UMMC used a phased approach — gradually restoring electronic health records, labs, and billing systems only after they were cleared as secure.

Even as the restoration process continued, patient safety and health continuity remained UMMC’s north star. Through transparent updates and robust interim procedures, the center showed its commitment to protecting care during one of its toughest cyber crises yet.

Patient Action Steps and Scam Protection

As systems recover and communication resumes, opportunistic scammers see a chance to exploit patient concerns. Staying alert and cautious can help you protect both your health information and your peace of mind.

How to Spot Official Communication from UMMC

Scam attempts often mimic hospital calls, emails, or texts—particularly around appointment rescheduling or billing. Here’s how you can distinguish genuine messages from potential threats:

• Caller Verification: Official UMMC staff will identify themselves clearly and may reference recent appointments or specific details only the clinic and patient would know. If you're unsure, hang up and call back using the number provided on UMMC's official website.
• Email Authenticity: Real messages from UMMC end with official domains (like @umc.edu). Avoid clicking on links or downloading attachments from unexpected or suspicious senders.
• No Request for Sensitive Details: UMMC staff won’t ask for your password or full Social Security Number over the phone or email. If you’re pushed for such details, treat it as a red flag.

Protecting Your Health Data Post-Breach

The threat doesn’t end once systems are restored. Now’s the time for a double-check on your own digital security:

1. Monitor Your Accounts: Regularly review both medical records and financial statements. Watch for unfamiliar services or unauthorized charges.
2. Update Your Passwords: Change your patient portal and healthcare-related passwords. Use strong combinations—with a mix of letters, numbers, and symbols—and don’t repeat passwords across accounts.
3. Freeze Credit If Needed: If you believe your Social Security Number may have been compromised, consider placing a freeze on your credit as a precaution.
4. Use Secure Communication Channels: Contact UMMC or your provider through official websites or verified phone numbers—never respond to pop-ups or unsolicited texts claiming an urgent need for your personal information.

A little caution goes a long way in keeping your health data safe after a security breach.

Ongoing Investigation and Patient Support

UMMC’s commitment to its patients hasn’t stopped at system recovery. The investigation into the ransomware attack remains active, as cybersecurity professionals and law enforcement agencies continue to work together to understand what happened, limit future risks, and hold those responsible accountable.

Current Status of the Investigation

• Active Collaboration with Law Enforcement: UMMC is working hand-in-hand with federal authorities to trace the origins of the attack and determine whether any patient data was accessed or exfiltrated.
• Continuous System Audits: Forensic cybersecurity teams are analyzing network logs and digital trails. These audits help identify vulnerabilities and create strategies for preventing similar incidents in the future.
• Transparent Updates: As the investigation progresses, UMMC provides periodic updates through official channels, keeping patients and staff informed about major findings or changes in risk status.

Support Measures for Patients

In the wake of the attack, UMMC is focused on making sure patients feel supported and protected. Here’s what you can expect:

• Dedicated Support Hotlines: UMMC has set up help lines specifically for patients with questions about the breach, billing concerns, or identity monitoring resources.
• Credit Monitoring Guidance: Information is available for patients who wish to apply for credit monitoring, and UMMC can provide advice about protective steps if personal information was potentially exposed.
• Emphasis on Patient Education: The medical center is stepping up educational outreach, with guides and updates about safe digital practices and what to watch for in the months following the attack.
• Accessibility Support: For patients with disabilities or additional communication needs, UMMC is providing accessible notices and tailored assistance to make sure everyone has the information they need.

Security incidents are stressful, but you aren’t alone. With ongoing investigation efforts and hands-on support, UMMC is taking real steps to protect its community and help you move forward with confidence.

‍