Cyber Incident Victim: The Cancer Center of Hawaii

On November 5, 2019, The Cancer Center of Hawaii experienced a cyber security breach that disrupted its computer network operations. The attack targeted the center’s network infrastructure, prompting an immediate shutdown of its servers as a containment measure. This defensive action had the unintended consequence of halting radiation treatment services across both of the center’s Oahu locations: Pali Momi Medical Center and St. Francis’ hospital campus in Liliha. Radiation therapy for cancer patients could not be delivered during the network outage, creating treatment delays for an unspecified number of individuals. The center publicly acknowledged the incident on December 10, 2019, confirming the November attack date and the operational impact in a statement issued the following day. No details were provided regarding the duration of the service interruption, the specific nature of the cyber attack, or whether patient data was compromised.

The network shutdown constituted the primary documented response to the breach, with no additional mitigation or recovery steps disclosed in available reports. The incident directly impaired clinical operations by preventing access to systems required for radiation therapy delivery, though the center did not specify whether other medical services or administrative functions were affected. No threat actor, motive, or intrusion method was identified in public statements. The disruption highlighted vulnerabilities in critical healthcare infrastructure, with the attack’s consequences extending beyond data security to tangible impacts on patient care delivery. Public reporting of the event originated from a December 11 Civil Beat article cited by DataBreaches.net, representing the only available contemporaneous account of the incident.