Kettering Health, a major hospital network in Dayton, Ohio, experienced a crippling ransomware attack early Tuesday, May 20, 2025, leading to a system-wide technology outage. The breach prompted the cancellation of all elective inpatient and outpatient procedures, disrupted the MyChart patient portal, call center, and phone lines, and forced emergency services to divert patients to other facilities. While emergency rooms and clinics remain operational, all non-urgent procedures are being rescheduled. The health system confirmed the incident stemmed from unauthorized access and is working with third-party experts to contain the attack.
Sources close to the matter told the say that the hackers are threatening to destroy or leak sensitive data on the dark web if Kettering officials do not engage in negotiations within 72 hours. The Greater Miami Valley EMS Council and Premier Health both reported significant impacts, with Premier declaring a "code yellow" and warning of increased patient volumes. The Greater Dayton Area Hospital Association emphasized the importance of resilience and coordination in healthcare cybersecurity. Kettering Health has not yet released specifics about the attackers or confirmed if ransom demands have been made, but continues active investigations while maintaining care for existing patients.
