Endless Mountains Health Systems impacted by ongoing cyberattack

Endless Mountains Health Systems (EMHS) in Pennsylvania is experiencing operational disruptions due to a cyberattack that has affected multiple systems across its healthcare network. 

The incident was publicly acknowledged on March 5, 2025, via the organization's website, though early signs of technical difficulties began appearing on their Facebook page as early as March 3, 2025.

The incident has significantly impacted EMHS's ability to provide normal services, causing them to implement alternative procedures for patient care. On March 7, 2025, EMHS published direct phone numbers for various departments on their Facebook page, which means that normal scheduling and communications systems remain compromised.

EMHS is requesting that patients bring ID, insurance details and medical detail documents with them, indicating that the electronic patient records are also unavailable.

EMHS has not disclosed the nature of the cyberattack, number of affected patients, specific systems compromised, and potential data exposure. As of March 10, 2025, no ransomware group has claimed responsibility for the attack.