Cyber Incident Victim: University of Vermont Health Network

On October 28, 2020, the University of Vermont Health Network experienced a cyberattack that triggered a widespread network disruption across its hospital system. The incident caused what officials described as a "significant and ongoing system-wide network issue" affecting six hospitals throughout Vermont and northern New York. Network spokesperson Neal Goswami publicly confirmed the cyberattack's occurrence on October 30, two days after the initial disruption began. The health network did not immediately disclose the specific nature of the cyberattack or identify the systems targeted by the threat actors. Technical teams worked to contain the disruption while administrators developed contingency plans to maintain clinical operations during the outage. The network-wide technological failure impacted multiple facilities simultaneously, though the organization did not specify whether patient data was compromised or if ransomware was involved in the incident.

The cyberattack resulted in sustained operational challenges across the healthcare network with no confirmed restoration timeline available at the time of reporting. Hospital staff implemented manual workarounds for critical functions such as patient scheduling and medical record access to sustain clinical care delivery. Outpatient appointments faced disruptions as the network grappled with electronic system unavailability, though emergency departments remained operational throughout the incident. The prolonged outage underscored the vulnerability of healthcare infrastructure to cyber threats capable of disabling core network functions across multiple facilities. No further details emerged regarding forensic findings, attacker identification, or data breach notifications during the initial disclosure period. The health network maintained public communications through official statements while continuing restoration efforts without projecting a resolution timeframe.