A handwritten note on a doctor’s office door doesn’t sound like the start of a cybersecurity story until you realize the clinic can’t even tell you why they’re closed. I’m Dan Dotson, and I sit down with our second John Doe, who’s spent nearly two decades in healthcare cybersecurity, to unpack what it feels like when the crisis you usually defend against suddenly hits you as a patient.

John walks us through the surreal details: an eerily empty parking lot, dark hallways, no call despite an appointment confirmed the day before, and a weekend of waiting with unanswered questions. When he finally reaches the office, he hears the words no patient wants to hear: “We got hacked.” From there, we dig into the real-world impact of a clinic cyberattack, including delayed care, postponed referrals and tests, and the mental load of wondering whether your protected health information is exposed.

We also get specific about what healthcare leaders can do better: incident response plans that include patient communication, scripts and training for front-desk teams, escalation paths for tough calls, and a thoughtful approach that protects trust while facts are still emerging. If you care about healthcare cybersecurity, ransomware resilience, patient safety, or HIPAA-era communication, this story connects the technical and human sides in a way that sticks.

Subscribe to Cyber Survivor, share this with someone who works in healthcare, and leave a review so more people hear how cybersecurity protects patients. What would you expect your clinic to say if their systems went down?