BIRMINGHAM, Alabama (November 26, 2019)—Casamba, one of the largest providers of electronic medical records (EMR) for home health and hospice, has been at least partly offline due to a malware attack, officials said.
"Casamba's EMR software for home health and hospice was recently subjected to a sophisticated malware attack. The company immediately notified law enforcement and hired a leading third-party forensic firm to supplement its ongoing recovery efforts,” the company said in a statement. “We are working 24/7 and making progress in bringing all systems back online.”
The company said there is no indication that any protected health information had been compromised.
“We take security seriously and will continue to make significant investments to further enhance our cybersecurity protocol,” the statement read.
Casamba is one in a spate of recent cyber attacks on health care technology providers and health systems. The Milwaukee Journal Sentinel reported that Russian hackers had ransomed data from Virtual Care Provider Inc., which provides internet security and data storage to nursing homes and acute-care facilities. And last month, Alabama hospital group DCH Health Systems paid an undisclosed amount to attackers that hit its three hospitals.
Casamba is one of the industry’s largest post-acute care software and services company, serving more than 275,000 providers in more than 10,500 clinics nationwide. It provides EMR for contract therapy, skilled nursing facilities and outpatient clinics as well as home health and hospice care.