Dennis Christopher R, Evans Christopher S, Duckworth Kathleen, Skinner Misty McLawhorn, Hanna John, Thompson Tanya, Herring Donette, Medford Richard J
Department of Information Services, ECU Health, 2190 Beasley Drive, Greenville, North Carolina, 27834, United States, 1 252-847-4133, 1 252-847-5561.
JMIR Med Inform. 2025 Sep 2;13:e69958. doi: 10.2196/69958.
In an era where health care is increasingly dependent on digital infrastructure, the resilience of health IT systems has become a cornerstone of patient safety and operational continuity. As cyber threats grow in frequency and sophistication, health care organizations have turned to advanced cybersecurity tools to safeguard their systems. Yet even the most robust defenses can falter. On July 19, 2024, a routine update from a widely used cybersecurity platform triggered a widespread IT disruption. A flawed sensor configuration led to 8647 "blue screen of death" (BSOD) events, with 729 devices requiring manual remediation. What unfolded was not just a technical crisis but a test of organizational agility, collaboration, and resilience. This viewpoint traces the response to that disruption, highlighting the pivotal role of clinical informaticists and the coordinated efforts that enabled a rapid recovery. From the formation of an incident response team to the triage and mitigation of impacted systems, the response was swift and strategic. Clinical informaticists emerged as key players, bridging the gap between technical teams and frontline care providers. They identified workflow disruptions, facilitated communication, and ensured that patient care remained as uninterrupted as possible. Despite the scale of the outage, operations continued with minimal disruption-thanks to early recognition, decisive action, and cross-disciplinary collaboration. This incident underscored the importance of a well-practiced response plan, clear communication channels, and the integration of clinical expertise in technical recovery efforts. As we reflect on this event, several lessons emerge: the need for continuous refinement of incident response strategies, the value of regular training exercises, and the critical role of clinical informatics in navigating digital crises. This paper calls for a renewed commitment to building resilient health IT ecosystems-ones that can withstand disruption and continue to support the delivery of safe, effective care.
在一个医疗保健日益依赖数字基础设施的时代,健康信息技术(IT)系统的弹性已成为患者安全和运营连续性的基石。随着网络威胁的频率和复杂性不断增加,医疗保健组织已转向先进的网络安全工具来保护其系统。然而,即使是最强大的防御也可能出现问题。2024年7月19日,一个广泛使用的网络安全平台的例行更新引发了一场广泛的IT中断。一个有缺陷的传感器配置导致了8647次“蓝屏死机”(BSOD)事件,729台设备需要人工修复。所发生的不仅是一场技术危机,更是对组织敏捷性、协作能力和恢复能力的考验。本观点追溯了对该中断事件的应对措施,强调了临床信息学家的关键作用以及实现快速恢复的协同努力。从事件响应团队的组建到对受影响系统的分类和缓解,应对措施迅速且具有战略性。临床信息学家成为关键角色,弥合了技术团队与一线护理人员之间的差距。他们识别工作流程中断情况,促进沟通,并确保患者护理尽可能不受干扰地继续进行。尽管停机规模巨大,但由于早期识别、果断行动和跨学科协作,运营得以在最小程度的干扰下继续进行。这一事件凸显了一个完善的应对计划、清晰的沟通渠道以及临床专业知识在技术恢复工作中的整合的重要性。当我们反思这一事件时,出现了几个教训:需要不断完善事件响应策略,定期进行培训演练的价值,以及临床信息学在应对数字危机中的关键作用。本文呼吁重新致力于构建具有弹性 的健康IT生态系统,即能够抵御干扰并继续支持提供安全、有效的护理的生态系统。
