A cybersecurity breach has disrupted operations at PrimaryPlus, a nonprofit healthcare organization serving northeastern Kentucky and the Ohio Valley region. The attack, detected on December 3, 2024, involved unauthorized access to parts of the organization's IT systems by an unknown third party.
The Vanceburg, Kentucky-based healthcare provider has experienced widespread service disruptions, including phone outages and limited pharmacy operations. Despite these challenges, PrimaryPlus continues to see most scheduled patients while working to restore full functionality.
"We have no evidence that personal or confidential information has been compromised," PrimaryPlus officials stated. The organization has brought in digital forensics experts to investigate the incident and implement enhanced security measures, including advanced monitoring systems.
Patients seeking prescriptions must currently bring their medication details in person due to limited pharmacy system access. While some locations, including the Vanceburg facility, have restored phone services, others remain affected. The patient portal offers an alternative way for individuals to communicate with their healthcare providers during the outage.
Staff members are adapting their workflows to maintain patient care amid the technical difficulties. The organization keeps patients informed through regular updates on its website and social media platforms.
PrimaryPlus, which provides primary care, specialty care, and pharmacy services across the region, has expressed gratitude to the community for their understanding during the recovery process. The investigation into the cybersecurity incident remains active, and the organization has committed to notifying affected individuals if any data exposure is discovered.