Lovelace Health System Company Cyber Security Posture
lovelace.comFor nearly 100 years, Lovelace Health System has set new standards of care in New Mexico through revolutionary advances in medicine and surgery. Today, that legacy of accomplishment continues in our commitment to advanced technology and sensitive care. At Lovelace, we believe that each encounter with a patient or health care consumer offers an opportunity to make a difference in their health and well-being โ and in our reputation for caring, customer service and positive outcomes. We've made investments in technology and programs to meet Albuquerque's evolving needs. With a network of acute care hospitals and Lovelace Medical Group clinics, we serve patients throughout the greater Albuquerque and Rio Rancho metropolitan area, as well as Roswell. We not only strive to be the provider of choice for patients, but employer of choice for health care professionals in New Mexico.
LHS Company Details
lovelace-health-system
2151 employees
13626.0
62
Hospitals and Health Care
lovelace.com
26
LOV_2883652
In-progress
LHS Risk Score (AI oriented)Between 900 and 1000
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
LHS Global Score.png)
Lovelace Health System Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 900 and 1000 |
Lovelace Health System Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| BSA Health System | Breach | 100 | 5 | 11/2023 | BSA2396224 | Link | |
Rankiteo Explanation : Attack threatening the organizationโs existenceDescription: BSA Health Systems, located in Amarillo, Texas, declared that it was made aware of a possible security breach that resulted in a network outage on Thanksgiving. News sources state that hospitals owned by Ardent in east Texas, Oklahoma, Kansas, and Idaho are impacted by the outage. Hospitals in New Mexico and New Jersey are also owned by the business. Ambulances in such states may be diverted by emergency departments, although that is still unknown. | |||||||
| UT Health East Texas | Breach | 100 | 5 | 11/2023 | UTH71515224 | Link | |
Rankiteo Explanation : Attack threatening the organizationโs existenceDescription: A possible cyber security breach has prevented a network of hospitals in East Texas from accepting ambulances to emergency departments since Thanksgiving Day. While the hospital looks into a possible security attack and attempts to get computers back online, the UT Health East Texas hospital network is working according to established downtime procedures. Although it's uncertain if that will happen, the hospital network initially stated that it anticipated computer networks to be restored in the following 24 to 36 hours. | |||||||
| Ardent Health Services | Ransomware | 75 | 2 | 12/2023 | ARD2306224 | Link | |
Rankiteo Explanation : Attack limited on finance or reputationDescription: Cybercriminals' attack on a significant U.S. health system during Thanksgiving week most certainly wasn't accidental. Following the discovery of what it later determined to be a ransomware attack, Ardent Health Services, a 30-hospital system, decided to take its IT systems offline. There were hospital disruptions in Texas, Kansas, Oklahoma, New Jersey, New Mexico, and Idaho. An Ardent representative informed the news outlet that after detecting the ransomware, the health system had discovered an abnormality and had called in more outside cybersecurity specialists to look into it. | |||||||
| Lovelace Health System | Ransomware | 85 | 3 | 11/2023 | LOV7215224 | Link | |
Rankiteo Explanation : Attack with significant impact with internal employee data leaksDescription: The ransomware assault affected Ardent Health Services, Lovelace's parent business, and its hospitals across the country. They therefore moved a large portion of their network, including user access, business services, the internet, and clinical programmes, offline. Emergency care was moved to other hospitals like Presbyterian and UNMH when Lovelace was initially informed of the attack. Lovelace's urgent care centre and emergency department are back in operation, and patients can resume their outpatient physical therapy and rehabilitation sessions. | |||||||
Lovelace Health System Company Subsidiaries
For nearly 100 years, Lovelace Health System has set new standards of care in New Mexico through revolutionary advances in medicine and surgery. Today, that legacy of accomplishment continues in our commitment to advanced technology and sensitive care. At Lovelace, we believe that each encounter with a patient or health care consumer offers an opportunity to make a difference in their health and well-being โ and in our reputation for caring, customer service and positive outcomes. We've made investments in technology and programs to meet Albuquerque's evolving needs. With a network of acute care hospitals and Lovelace Medical Group clinics, we serve patients throughout the greater Albuquerque and Rio Rancho metropolitan area, as well as Roswell. We not only strive to be the provider of choice for patients, but employer of choice for health care professionals in New Mexico.
Access Data Using Our API
Get company history
Rapid.png)
LHS Cyber Security News
Lovelace taps veteran hospital executive Cliff Wilson as new CEO
Jul. 7โLovelace Health System has appointed Cliff Wilson, a health care leader with nearly two decades of experience, as president and CEO,ย ...
Lovelace Health System Continues to Grapple with Recent Ransomware Attack, Raising Data Breach Concerns
In this notice, Lovelace Health explains that the incident stemmed from a large-scale ransomware attack against Ardent. Ardent and Lovelaceย ...
Law firm used by Presbyterian says data breach may have impacted patientsโ personal information
A law firm that provides services to Presbyterian Healthcare Services says it experienced a data security incident earlier this year thatย ...
Lovelace Health System CEO resigns amid ongoing turnover in top role
23โLovelace Health System CEO and President Troy Greer has resigned, officials announced last week, the latest in a string of departures for theย ...
Ransomware attack affects Lovelace Health System in NM, along with Ardent Health facilities nationwide
A network outage, now determined to be a ransomware attack incident, is affecting several hospitals within the Ardent Health Services' nationwide health careย ...
UPDATE: Ardent Health restores access to Epic EHR two weeks after ransomware attack
Hospitals across multiple states have reopened their emergency rooms but continue to face disruptions after parent company Ardent Healthย ...
Lovelace employee says network outage has been chaotic
A network outage affecting Lovelace Health System has caused the medical center to limit patient emergency care. Sources inside the hospitalย ...
Cyber-attack closes hospital emergency rooms in three US states
Ardent Health, which oversees hospitals in states including Texas, New Mexico and Oklahoma said it was targeted over Thanksgiving.
Ransomware ramps up against private sector in November
TechTarget Editorial's monthly ransomware round up for November consisted of many private sector victims that saw substantial fallout.
LHS Similar Companies
University Health Network
University Health Network (UHN) is Canada's largest research hospital, which includes Toronto General and Toronto Western Hospitals, Princess Margaret Cancer Centre, the Toronto Rehabilitation Institute and the Michener Institute for Education at UHN. The scope of research and complexity of cases at
Douglass Hanly Moir Pathology
Douglass Hanly Moir Pathology is an established and well-respected pathology practice offering comprehensive, high-quality pathology across NSW and northwest Victoria. We are the most prominent member of Sonic Healthcare, an Australian-owned, publicly listed company operating in pathology, radiolo
NYU Langone Health
NYU Langone Health is a world-class integrated academic health system with a culture of exceptionalism. Vizient, Inc., has ranked NYU Langone the No. 1 comprehensive academic medical center in the country for three years in a row, and U.S. News & World Report recently placed nine of its clinical spe
NYC Health + Hospitals
NYC Health + Hospitals is the nationโs largest public health care delivery system. We are an integrated network of hospitals, trauma centers, neighborhood health centers, nursing homes, and post-acute care centers. We are a home care agency and a health plan, MetroPlus. The health system provides es
Guy's and St Thomas'โ NHS Foundation Trust
One of the largest Trusts in the UK, Guyโs and St Thomasโ NHS Foundation Trust comprises five of the UKโs best known hospitals โ Guyโs, St Thomasโ, Evelina London Childrenโs Hospital, Royal Brompton and Harefield โ as well as community services in Lambeth and Southwark, all with a long history of hi
University Hospitals Connor Integrative Health Network
Integrative Medicine (IM) is an approach to healthcare that takes into account the whole person addressing the full range of physical, emotional, mental, social, spiritual, and environmental influences that affect an individualโs health. IM is informed by evidence, makes use of all appropriate thera
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
LHS CyberSecurity History Information
How many cyber incidents has LHS faced?
Total Incidents: According to Rankiteo, LHS has faced 4 incidents in the past.
What types of cybersecurity incidents have occurred at LHS?
Incident Types: The types of cybersecurity incidents that have occurred incidents Ransomware and Breach.
How does LHS detect and respond to cybersecurity incidents?
Detection and Response: The company detects and responds to cybersecurity incidents through containment measures with Moved a large portion of their network offline and recovery measures with Resumed operations at urgent care centre and emergency department and third party assistance with Outside cybersecurity specialists and containment measures with Taking IT systems offline.
Incident Details
Can you provide details on each incident?
Incident : Cyber Security Breach
Title: Cyber Security Breach at UT Health East Texas Hospital Network
Description: A possible cyber security breach has prevented a network of hospitals in East Texas from accepting ambulances to emergency departments since Thanksgiving Day. While the hospital looks into a possible security attack and attempts to get computers back online, the UT Health East Texas hospital network is working according to established downtime procedures. Although it's uncertain if that will happen, the hospital network initially stated that it anticipated computer networks to be restored in the following 24 to 36 hours.
Date Detected: 2022-11-24
Type: Cyber Security Breach
Incident : Ransomware
Title: Ransomware Attack on Ardent Health Services
Description: The ransomware assault affected Ardent Health Services, Lovelace's parent business, and its hospitals across the country. They therefore moved a large portion of their network, including user access, business services, the internet, and clinical programmes, offline. Emergency care was moved to other hospitals like Presbyterian and UNMH when Lovelace was initially informed of the attack. Lovelace's urgent care centre and emergency department are back in operation, and patients can resume their outpatient physical therapy and rehabilitation sessions.
Type: Ransomware
Incident : Network Outage
Title: BSA Health Systems Network Outage
Description: BSA Health Systems in Amarillo, Texas, reported a possible security breach that resulted in a network outage on Thanksgiving. The outage impacted hospitals owned by Ardent in east Texas, Oklahoma, Kansas, and Idaho. Hospitals in New Mexico and New Jersey are also owned by the business, and emergency departments in these states may need to divert ambulances.
Date Detected: Thanksgiving
Type: Network Outage
Incident : Ransomware
Title: Ransomware Attack on Ardent Health Services
Description: Cybercriminals' attack on a significant U.S. health system during Thanksgiving week most certainly wasn't accidental. Following the discovery of what it later determined to be a ransomware attack, Ardent Health Services, a 30-hospital system, decided to take its IT systems offline. There were hospital disruptions in Texas, Kansas, Oklahoma, New Jersey, New Mexico, and Idaho. An Ardent representative informed the news outlet that after detecting the ransomware, the health system had discovered an abnormality and had called in more outside cybersecurity specialists to look into it.
Type: Ransomware
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident?
Incident : Cyber Security Breach UTH71515224
Systems Affected: Emergency Department Systems
Downtime: ['24 to 36 hours']
Operational Impact: Unable to accept ambulances to emergency departments
Incident : Ransomware LOV7215224
Systems Affected: Network, User Access, Business Services, Internet, Clinical Programmes
Operational Impact: Emergency care moved to other hospitals, Temporary shutdown of network services
Incident : Ransomware ARD2306224
Systems Affected: IT systems
Operational Impact: Hospital disruptions
Which entities were affected by each incident?
Incident : Cyber Security Breach UTH71515224
Entity Type: Hospital Network
Industry: Healthcare
Location: East Texas
Incident : Network Outage BSA2396224
Entity Type: Healthcare
Industry: Healthcare
Location: Amarillo, Texas
Incident : Network Outage BSA2396224
Entity Type: Healthcare
Industry: Healthcare
Location: east Texas, Oklahoma, Kansas, Idaho, New Mexico, New Jersey
Incident : Ransomware ARD2306224
Entity Type: Health System
Industry: Healthcare
Location: Texas, Kansas, Oklahoma, New Jersey, New Mexico, Idaho
Size: 30-hospital system
Response to the Incidents
What measures were taken in response to each incident?
Incident : Ransomware LOV7215224
Containment Measures: Moved a large portion of their network offline
Recovery Measures: Resumed operations at urgent care centre and emergency department
Incident : Ransomware ARD2306224
Third Party Assistance: Outside cybersecurity specialists
Containment Measures: Taking IT systems offline
How does the company involve third-party assistance in incident response?
Third-Party Assistance: The company involves third-party assistance in incident response through Outside cybersecurity specialists.
Data Breach Information
How does the company handle incidents involving personally identifiable information (PII)?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through were Moved a large portion of their network offline and Taking IT systems offline.
Ransomware Information
How does the company recover data encrypted by ransomware?
Data Recovery from Ransomware: The company recovers data encrypted by ransomware through Resumed operations at urgent care centre and emergency department.
Investigation Status
What is the current status of the investigation for each incident?
Incident : Cyber Security Breach UTH71515224
Investigation Status: Ongoing
Post-Incident Analysis
What is the company's process for conducting post-incident analysis?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Outside cybersecurity specialists.
Additional Questions
Incident Details
What was the most recent incident detected?
Most Recent Incident Detected: The most recent incident detected was on 2022-11-24.
Impact of the Incidents
What was the most significant system affected in an incident?
Most Significant System Affected: The most significant system affected in an incident were Emergency Department Systems and Network, User Access, Business Services, Internet, Clinical Programmes and Network and IT systems.
Response to the Incidents
What third-party assistance was involved in the most recent incident?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was Outside cybersecurity specialists.
What containment measures were taken in the most recent incident?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Moved a large portion of their network offline and Taking IT systems offline.
Investigation Status
What is the current status of the most recent investigation?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
