{"id":2799,"date":"2025-09-13T12:52:51","date_gmt":"2025-09-13T12:52:51","guid":{"rendered":"https:\/\/ft365.org\/index.php\/2025\/09\/13\/france-three-regional-healthcare-agencies-targeted-by-cyber-attacks\/"},"modified":"2025-09-13T12:52:51","modified_gmt":"2025-09-13T12:52:51","slug":"france-three-regional-healthcare-agencies-targeted-by-cyber-attacks","status":"publish","type":"post","link":"http:\/\/ft365.org\/index.php\/2025\/09\/13\/france-three-regional-healthcare-agencies-targeted-by-cyber-attacks\/","title":{"rendered":"France: Three Regional Healthcare Agencies Targeted by Cyber-Attacks"},"content":{"rendered":"<div id=\"cphContent_pnlMainContent\" data-layout-id=\"2\" data-edit-folder-name=\"text\" data-index=\"0\">\n<p>French regional healthcare agencies have been targeted by cyber-attacks compromising the personal data of patients across the country.<\/p>\n<p>On September 8, the regional healthcare agencies (ARS) for three regions, Hauts-de-France (Upper France), Normandy and Pays de la Loire (Lower Loire), issued security alerts warning about recent cyber-attacks carried out against the servers hosting the identity data of patients from public hospitals in the regions.<\/p>\n<p>All three agencies described a very similar incident with the same impact.<\/p>\n<p>Preliminary investigations have confirmed multiple cyber-attack attempts, conducted over time, against the information systems of at least these three ARS, said the Normandy agency.<\/p>\n<p>According to the Hauts-de-France agency, compromised data includes personally identifiable information (PII), such as patients\u2019 full names, ages, phone numbers and email addresses.<\/p>\n<p>However, at this stage, no healthcare information seems to have been exposed, the three agencies confirmed.<\/p>\n<p>&#8220;The compromised accounts have been disabled and additional security measures were immediately implemented to prevent any further unauthorized access of this kind, said the Normandy-based agency.<\/p>\n<h2><strong>How Attackers Collected Patients\u2019 PII<\/strong><\/h2>\n<p>These investigations also revealed that unauthorized access was gained through the impersonation of healthcare professionals.<\/p>\n<p>The fraudulent access resulted in the breach of personal data (administrative records) belonging to users.<\/p>\n<p>In practice, unauthorized access to the accounts of healthcare professionals allowed the attackers to access systems managed by regional e-health development support groups (GRADeS).<\/p>\n<p>GRADeS are region-specific institutions that offer healthcare professionals common digital services across the region.<\/p>\n<p>For instance, Normand\u2019e-Sant\u00e9, the GRADeS for Normandy, has a portfolio of 43 services, including Therap-e, a telehealth digital platform that offers remote medical consultations and emergency appointment services.<\/p>\n<p>According to the French cybersecurity expert Damien Bancal, author of the cyber website Zataz, attackers likely scraped data from patients from these GRADeS-controlled systems.<\/p>\n<h2><strong>Phishing Attempts Most Pressing Concern<\/strong><\/h2>\n<p>In its advisory, the ARS Hauts-de-France emphasized that this incident has had no impact on the operations of hospitals in the region or on the region\u2019s digital health services.<\/p>\n<p>\u201cThe primary risk associated with these cyber-attacks relates to phishing attempts,\u201d the message reads.<\/p>\n<p>\u201cAs a reminder, healthcare professionals or medical\/social institutions will never request the transmission of personal information (bank details, social security numbers, passwords, etc.) via email, phone or SMS.\u201d<\/p>\n<p>The ARS Pays de la Loire said it plans to inform every potentially affected patient in the near future.<\/p>\n<p>Finally, Normand\u2019e-Sant\u00e9 has filed reports with the French data protection authority (CNIL) and complaints have been lodged with the relevant authorities.<\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>French regional healthcare agencies have been targeted by cyber-attacks compromising the personal data of patients across the country. On September 8, the regional healthcare agencies (ARS) for three regions, Hauts-de-France (Upper France), Normandy and Pays de la Loire (Lower Loire), issued security alerts warning about recent cyber-attacks carried out against the servers hosting the identity<\/p>\n","protected":false},"author":2,"featured_media":2800,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-2799","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized"],"featured_image_urls":{"full":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/09\/2799-223a55dc-4dc3-4f01-969f-7733ea4194f6.jpg",300,300,false],"thumbnail":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/09\/2799-223a55dc-4dc3-4f01-969f-7733ea4194f6-150x150.jpg",150,150,true],"medium":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/09\/2799-223a55dc-4dc3-4f01-969f-7733ea4194f6.jpg",300,300,false],"medium_large":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/09\/2799-223a55dc-4dc3-4f01-969f-7733ea4194f6.jpg",300,300,false],"large":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/09\/2799-223a55dc-4dc3-4f01-969f-7733ea4194f6.jpg",300,300,false],"1536x1536":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/09\/2799-223a55dc-4dc3-4f01-969f-7733ea4194f6.jpg",300,300,false],"2048x2048":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/09\/2799-223a55dc-4dc3-4f01-969f-7733ea4194f6.jpg",300,300,false],"morenews-featured":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/09\/2799-223a55dc-4dc3-4f01-969f-7733ea4194f6.jpg",300,300,false],"morenews-large":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/09\/2799-223a55dc-4dc3-4f01-969f-7733ea4194f6.jpg",300,300,false],"morenews-medium":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/09\/2799-223a55dc-4dc3-4f01-969f-7733ea4194f6.jpg",300,300,false],"crawlomatic_preview_image":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/09\/2799-223a55dc-4dc3-4f01-969f-7733ea4194f6-146x146.jpg",146,146,true]},"author_info":{"display_name":"henry","author_link":"http:\/\/ft365.org\/index.php\/author\/henry\/"},"category_info":"<a href=\"http:\/\/ft365.org\/index.php\/category\/uncategorized\/\" rel=\"category tag\">Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","_links":{"self":[{"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts\/2799","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/comments?post=2799"}],"version-history":[{"count":0,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts\/2799\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/media\/2800"}],"wp:attachment":[{"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/media?parent=2799"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/categories?post=2799"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/tags?post=2799"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}