On December 7, 2024, Vidymed, a healthcare group with four centers in Lausanne and Épalinges, Switzerland, became the target of a cyberattack. The intrusion was discovered early on Saturday morning, and by evening, the attack was still ongoing. In response to the breach, Vidymed took immediate measures to contain the situation and protect the integrity of its infrastructure. A crisis unit was set up, involving Vidymed’s management, the cantonal health authorities, and the cybersecurity intervention team from the Vaud Department of Health and Social Action.
To prevent data leaks, Vidymed suspended all IT services. This led to a temporary reliance on pen and paper for recording patient information, as medical staff were unable to access their usual digital systems. Despite the disruption in their IT services, the group assured the public that medical care, including consultations, was continuing as usual. The interruption did not affect patient treatment, and Vidymed emphasized that the situation was under control thanks to the swift action taken by their team.
The group’s centers, which handle approximately 100,000 consultations annually in the Lausanne region, represent a vital part of the local healthcare system. Vidymed operates emergency medical centers in Épalinges and Lausanne, with additional pediatric services provided in the Vidy area. The cyberattack raised concerns about the broader impact on the healthcare system in Vaud, with potential disruptions affecting both patient care and emergency services.
As the incident unfolds, Vidymed is working with cybersecurity experts to determine the full extent of the breach and any potential consequences. They have pledged to provide transparent updates as new information becomes available. While the situation remains ongoing, the group reassured the public that they are doing everything in their power to mitigate the impact of the attack, ensuring the continuity of essential medical services for the region.
Reference:
