The University of Mississippi Medical Center (UMMC) continues its recovery efforts following a ransomware attack launched on February 19, 2026, that significantly disrupted operations. While UMMC reports making “significant progress,” cancellations of clinic appointments and elective procedures are expected to continue through Friday, February 27, impacting patient care across the state. The incident underscores the growing vulnerability of healthcare systems to cyberattacks and the complex challenges of restoring critical infrastructure.
All hospitals and emergency departments affiliated with UMMC – in Jackson, Madison County, Holmes County, and Grenada – remain open and are continuing to serve patients, though with potential delays and adjustments. UMMC officials stated they are “hopeful” to resume elective procedures and regular clinic operations as early as Monday, but cautioned that this timeline is contingent on ongoing progress in the next few days. The hospital system is working around the clock to restore its IT systems, including Epic, its electronic medical record platform, which was directly impacted by the attack.
Understanding the Scope of the Disruption
The cyberattack forced UMMC to proactively shut down all of its IT systems as a precautionary measure, a step necessary to contain the spread of the ransomware. Vice Chancellor for Health Affairs LouAnn Woodward explained during a press conference on February 19 that the attack impacted the hospital’s IT network and key systems. The incident has been confirmed as a ransomware attack, though details regarding the attackers and their demands remain limited as investigations continue. Woodward acknowledged the uncertainty surrounding the duration of the disruption and the potential compromise of sensitive data, including credit card and patient information, stating it was “still too early to determine the full extent of the breach.”
Federal Investigation and Support
The response to the cyberattack is a collaborative effort involving multiple federal agencies. The FBI, U.S. Department of Homeland Security, and U.S. Cybersecurity and Infrastructure Security Agency are all actively involved in the investigation. FBI Special Agent in Charge in Mississippi, Robert Eikhoff, emphasized the agency’s commitment to assisting UMMC in restoring its systems and maintaining patient care. “We are in the process of surging resources, both locally and nationally, into this incident to make sure that we are standing alongside with UMMC and their vendors as we seem to understand the extent of this attack,” Eikhoff said.
Impact on Patient Care and Access
The widespread disruption has led to the closure of all 35 UMMC clinics throughout Mississippi. Patients with scheduled appointments through Friday have been notified of cancellations and are expected to be rescheduled. UMMC is prioritizing care for patients with time-sensitive needs, directing them to call the University of Mississippi Medical Center Triage Line at (601) 815-0000. Those contacting the triage line who require urgent care will be contacted directly to schedule a clinic visit between Wednesday and Friday. For emergencies, patients are advised to call 911.
The situation highlights the critical reliance of modern healthcare on digital infrastructure and the potential consequences when those systems are compromised. The extended clinic closures and procedure cancellations create significant challenges for patients requiring ongoing medical care, and the uncertainty surrounding the restoration timeline adds to the anxiety.
What is Ransomware?
Ransomware is a type of malicious software designed to encrypt a victim’s files, rendering them inaccessible until a ransom is paid to the attackers. The UMMC incident is part of a growing trend of ransomware attacks targeting healthcare organizations, often motivated by financial gain. These attacks can disrupt critical services, compromise patient data, and create significant financial burdens for affected institutions. More information about ransomware and its impact can be found here.
Looking Ahead
UMMC anticipates providing a clearer update regarding the resumption of normal operations in the coming days. The hospital system’s ability to restore services by Monday hinges on continued progress in system recovery and security assessments. Patients are encouraged to monitor UMMC’s official channels for updates and to utilize the triage line for urgent medical needs. The full extent of the data breach and the long-term impact of the cyberattack remain under investigation.
As a board-certified physician and medical writer, I want to emphasize the importance of protecting your personal health information online. Be vigilant about phishing scams, use strong passwords, and keep your software updated.
Share your thoughts on this developing story in the comments below.
