The University Hospital of Rennes has fallen victim to a cyberattack, with data leakage occurring since Wednesday. Despite the breach, patient care remains uninterrupted, as emergency services and medical activities continue to operate normally. The hospital promptly implemented precautionary measures to isolate its information system from the internet, aiming to contain the attack’s spread while maintaining internal medical applications’ availability. Additionally, a crisis unit was activated immediately, and a complaint was filed with local authorities, demonstrating the hospital’s proactive response to the incident.
Efforts to assess the extent of the data breach are underway, with investigations ongoing in collaboration with cybersecurity agencies such as the National Agency for the Security of Information Systems (ANSSI) and CERT-Santé. While medical activities persist without interruption, the cyberattack has resulted in data exfiltration, prompting the hospital to analyze the quantity and nature of the compromised data. In compliance with data protection regulations, the University Hospital of Rennes has reported the incident to the CNIL and pledged to take necessary measures to mitigate the impact on affected individuals.
This cyber incident underscores the growing threat of cybersecurity breaches targeting healthcare institutions, with similar attacks reported in other French hospitals in recent months. Despite the challenges posed by cyber threats, the hospital remains committed to upholding patient care standards and safeguarding sensitive information. Collaboration with cybersecurity agencies and regulatory bodies reflects the hospital’s dedication to addressing the breach effectively and preventing future security incidents, highlighting the importance of proactive cybersecurity measures in healthcare settings.
