Cyberattack Disrupts Hospitals in North Central Massachusetts
A significant cyberattack has recently affected Heywood Hospital in Gardner and its sister facility, Athol Hospital, located in Athol. Both institutions are under the management of Heywood Healthcare, a non-profit organization that provides essential health services to the community. The incident has raised urgent concerns about hospital cybersecurity and patient safety.
Immediate Impact of the Cyberattack
First detected last week, the cyber intrusion prompted an emergency network shutdown as hospital teams moved swiftly to mitigate the risks posed to patient data and operational systems. In this crisis, a protocol known as “Code Black” was declared—indicative of a critical systems outage. Due to the severity of the situation, emergency departments temporarily halted ambulance operations, redirecting patients to other regional healthcare facilities.
Effects on Hospital Operations
The breach disrupted a wide range of vital services. Key operations including internet connectivity, email communications, and phone systems were severely impacted. Additionally, critical areas like radiology and laboratory services faced significant operational challenges. As of October 16, 2025, hospital officials confirmed that a cybersecurity incident caused these extensive outages. To assist with recovery, a third-party cybersecurity firm has been enlisted to investigate the breach and support restoration efforts.
Despite these challenges, both Heywood Hospital and Athol Hospital have maintained their outpatient services through Heywood Medical Group. Hospital authorities emphasized that patient safety remains their highest priority. However, some services are currently running at a reduced capacity as they work to restore full functionality.
Temporary Communication Solutions
To ease the communication gap caused by the cyberattack, the Athena patient portal has been reactivated, enabling patients to communicate with their healthcare providers. For those unable to access this digital platform, the hospitals have set up an answering service to assist patients with their inquiries.
Why Cybersecurity is Critical in Healthcare
The healthcare sector has increasingly become a prime target for cybercriminals, notably ransomware groups. A study from the Ponemon Institute reveals that an alarming 93% of healthcare organizations experienced a cybersecurity incident within the past year. Disturbingly, 72% of these incidents had a direct impact on patient care, leading to disruptions that could have serious implications for health outcomes.
Incidents of cybersecurity breaches in healthcare settings can result in cancellations of appointments, delays in patient intake, longer hospital stays, and even worsening health conditions for patients. The study underscores the pressing need for robust cybersecurity measures in healthcare environments to mitigate risks associated with such attacks.
Ongoing Investigation and Recovery Efforts
As investigations continue, Heywood Hospital and Athol Hospital are collaborating with cybersecurity experts to analyze the breach and restore normal operations. Despite some communication tools and functionalities returning to service, complete system recovery has not yet been achieved, and no public timeline has been provided for when full operational capabilities will be restored.
Currently, there are no confirmations regarding the involvement of ransomware or indications of any patient data being compromised. Heywood Healthcare is committed to ongoing monitoring of the situation, assuring the community that updates will be provided as more information becomes available.
The Continued Threat Landscape in Healthcare
As cyber threats to the healthcare industry evolve, instances like the recent attack on Heywood and Athol Hospitals serve as stark reminders of the vulnerabilities present in these critical institutions. The ongoing situation reinforces the necessity for continuous improvement in cybersecurity practices to safeguard patient data and maintain operational integrity in healthcare settings.
