Cookeville Regional Medical Center Suffers hit by ransomware attack disrupting IT systems
Learn More
Cookeville Regional Medical Center, a 269-bed healthcare facility in Tennessee, was hit by a ransomware attack on July 13, 2025, that caused network outage.
The incident forced the hospital's IT systems offline. CRMC's Information System team reported discovering unusual activity disrupting some of the hospital's computer systems on Sunday.
Hospital officials emphasize that patient care operations have continued without interruption. Scheduling functions and some technology services have been impacted and slowed due to the system disruption. Federal law enforcement officials were notified, and external security experts have been retained to assist in the investigation and recovery
Currently, hospital officials are investigating whether patient data has been compromised in the attack. The potentially exposed types of data and affected number of individuals are not disclosed.
The medical center emphasized that "Patient care remains the number one priority" and that "We are still fully open and caring for patients," though there "may be delays in getting results, scheduling due to disruption."
Hospital officials have stated they will provide patients with additional information as the investigation progresses and more details become available.
Update - as of 16th of April 2026, Cookeville Regional Medical Center reports that the incident affected roughly 337,000 people's personal data that leaked for free after no buyers emerged . The exposed data includes:
- Social Security numbers,
- driver's license numbers,
- medical/insurance information
The attack, was claimed by the Rhysida group.
