The LockBit cybercriminal gang has just claimed responsibility for a computer attack against the Elsan Group, France’s leading private healthcare operator. Spotted by Le Mag It, the extortion attempt was published on the Mafia franchise’s blog on Tuesday. Cybercriminals claim to have stolen nearly 821 gigabytes of administrative data from the company.
According to the incident response center of the Ministry of Health, the Paris headquarters of the Elsan Group was the victim of a computer intrusion on the night of January 17 to 18. “This incident remained confined to the head office information systems, with no rebound to the Group’s clinics”, specifies CERT Santé.
Incident under control
In response to the intrusion, the hospitals of the company, which has 137 establishments in France, were disconnected from headquarters. “The digital investigations are still in progress, the incident is under control and the investigating services have been seized,” adds CERT Santé.
The regional daily The voice of the North was thus echoed, six days ago, of this cyberattack, ultimately “without consequence on patient data”, according to the company. “This incident is similar to the serious incidents that have occurred recently in our sector”, underlines for its part the CERT Santé, which “calls for the maintenance of strong vigilance, in particular on the correction of vulnerabilities affecting information systems”.
In 2022, Anssi intervened to help 11 public health establishments victim of ransomware attacks. If the state cyberfirefighter does not think that this sector is specifically targeted, his experts are on hand to help him raise his level of security.
After the attacks on the hospitals of Corbeil-Essonnes and Chesnay-Rocquencourt, the government had thus announced at the end of December the launch of a “vast program of preparation for cyber incidents” of health establishments. A new measure which succeeded the envelope of 20 million euros promised this summer to better secure these critical infrastructures.