Security Experts:

Connect with us

Hi, what are you looking for?



Healthcare Technology Provider Omnicell Discloses Ransomware Attack

Healthcare technology company Omnicell revealed in a filing with the United States Securities and Exchange Commission (SEC) that it recently fell victim to a ransomware attack.

Healthcare technology company Omnicell revealed in a filing with the United States Securities and Exchange Commission (SEC) that it recently fell victim to a ransomware attack.

Omnicell is an American multinational company that manufactures systems for automated medication management at healthcare facilities, as well as patient engagement software for pharmacies.

In its latest Form 10-Q filing with the SEC, the company noted that some of its internal systems were impacted by a ransomware attack on May 4, 2022.

“There is an impact on certain of the Company’s products and services, as well as certain of its internal systems,” Omnicell said.

The company says it immediately took steps to contain the incident and that it also implemented plans to “restore and support continued operations.”

While it has already informed law enforcement and contacted cybersecurity experts to investigate the incident, Omnicell hasn’t yet determined the extent of the attack.

“The Company is in the early stages of its investigation and assessment of the security event and cannot determine, at this time, the extent of the impact from such an event on our business, results of operations or financial condition or whether such impact will have a material adverse effect,” Omnicell said.

Omnicell did not provide further information on the ransomware used in the attack and didn’t say whether the attackers stole any corporate or personal information.

In its 2021 Internet Crime Report earlier this year, the FBI Internet Crime Complaint Center (IC3) noted that the public health sector was the most targeted by ransomware last year.

In 2021, IC3 received 148 complaints of ransomware attacks from healthcare firms, twice the number received from organizations in the information technology sector, which was the third most targeted sector.

As Omnicell points out, however, organizations are prone to various other types of cyberattacks and internal threats as well.

“Our IT systems and third-party cloud services are potentially vulnerable to cyber-attacks, including ransomware, or other data security incidents, by employees or others, which may expose sensitive data to unauthorized persons,” Omnicell noted.

Related: Ransomware Attack Hits Production Facilities of Agricultural Equipment Giant AGCO

Related: Ransomware, Malware-as-a-Service Dominate Threat Landscape

Related: Ransomware Attack Disrupts Manufacturing at KP Snacks

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...


The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...


No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.