More than 1 million patients at Corewell Health may have had their information exposed as the health system's population health management vendor, HealthEC, experienced a data breach, Michigan Attorney General Dana Nessel said Dec. 26.

Hackers are emailing patients of Oklahoma City, Okla.-based Integris Health and demanding $50 in Bitcoin, The Oklahoman reported Dec. 26.

Orlando (Fla.) Health is alerting patients that some of their protected health information may have been compromised as two of the organization's vendors experienced cybersecurity breaches. 

Nashville, Tenn.-based Ardent Health Services has restored access to its MyChart patient portal after a Nov. 23 ransomware incident rendered it offline. 

Salem (Ohio) Community Hospital is facing a lawsuit due to a breach at medical transcription service Perry Johnson & Associates which led some of the hospital's patient data to be compromised, NBC-affiliate WFMJ reported Dec. 21. 

Cedar Rapids, Iowa-based Mercy Medical Center's patient information has been compromised as its former medical transcription service, Perry Johnson & Associates, experienced a cybersecurity incident. 

Nashville, Tenn.-based Ardent Health Services is still working to restore its MyChart system after a Nov. 23 ransomware incident rendered it offline. 

The Justice Department has taken down Blackcat ransomware group, the hackers behind the cyberattack on Allentown, Pa.-based Lehigh Valley Health Network. 

Here are three ransomware gangs targeting hospitals:

Bradenton, Fla.-based Manatee Memorial Hospital reported it was affected by a "sophisticated ransomware attack incident," according to the Bradenton Herald.

Liberty (Mo.) Hospital is diverting patients as the hospital deals with an "IT event," CBS affiliate KCTV reported Dec. 19. 

Connecticut health plans have decided to work with Manchester-based Eastern Connecticut Health Network to mitigate the effect of billing issues from a cyberattack in early August, according to CT Insider.

Green Bay, Wis.-based Bellin Health said an unauthorized party scanned documents related to the purchase of home care equipment from an electronic folder within its computer system back in October. 

Louisville, Ky.-based Norton Healthcare is facing two lawsuits for a May cybersecurity breach that exposed patient data, Fox affiliate WDRB reported Dec. 15. 

Ransomware gang Hunters International is claiming responsibility for a November cyberattack on Seattle-based Fred Hutchinson Cancer Center that led to patients receiving blackmail threats, Bleeping Computer reported Dec. 15. 

Two health systems are reporting that some of their patients' protected health information may have been compromised due to a breach at ESO Solutions, a company that provides software services to hospitals.

Kingston, N.Y.-based HealthAlliance is notifying patients that an unauthorized party accessed some of its IT systems, potentially compromising patient information. 

The American Hospital Association said HHS' plan to levy financial penalties in the event of a cyberattack on a healthcare organization would be counterproductive.

Morrison (Ill.) Community Hospital reported a data breach that affected 122,488 patients. 

Louisville, Ky.-based Norton Healthcare confirmed that the May ‘cyber incident’ that led the health system to shut down its network briefly was a ransomware attack.