6-05-2025 11:20pm

Kettering Health May Have Been Attacked By The Ransomware Group Interlock

Beth Callahan Editor

WARREN COUNTY, OH -- Kettering Health recently released a statement concering the cybersecurity attack it has experienced.....

"On Tuesday, May 20, 2025, Kettering Health was impacted by a cybersecurity incident, which we have reason to believe was launched by the ransomware group Interlock. This prompted an immediate and comprehensive response to ensure the security of our systems and the integrity of our data.

Our response, to date, has included the following:

Complete Threat Removal: The tools and persistence mechanisms used by the third-party group have been eradicated, and all affected systems have been secured.
Security Enhancements: A thorough review of all systems was conducted by external partners and our internal team, and all necessary security protocols, including network segmentation, enhanced monitoring, and updated access controls, are in place.
Vulnerability Assessment & Patching: A thorough review of all systems was conducted by external partners and our internal team, and all updates and patches are in place.
Ongoing Protection Measures: We are confident that our cybersecurity framework and employee security training are sufficient to mitigate future risks.

We have strong confidence that our network-connected devices are secure, and our connections to our partners are fully protected.

Our primary focus has shifted to ensuring that patients can reliably communicate, schedule, and receive all types of care from Kettering Health. Updates related to patient care and the restoration of services are posted regularly at https://ketteringhealth.org/system-wide-technology-outage/"