A major healthcare provider in Austria, the Humanomed Group, has reported that it was a victim of a cyberattack. The group, which operates private clinics in the Austrian cities of Villach and Klagenfurt, confirmed the security incident. Its internal IT technicians first discovered irregularities in the radiology system used by the health group. They quickly found out that hackers were attempting to gain access to the hospital network through this system. This healthcare provider cares for approximately 12,000 inpatients every single year at its two primary hospital locations.
The only entry point for the hackers could have been when new software updates were being remotely installed.
The specific radiology software in question is operated by an external third-party company via remote maintenance access. This highlights a potential supply chain vulnerability that was exploited by the threat actors to gain their access. From the current point of view, it is not assumed that any sensitive patient data could have been siphoned off. An external security company was immediately called in to assist with the ongoing internal investigation.
Two specialist companies are now actively looking for errors and vulnerabilities within the hospital group’s IT network. A comprehensive investigation is underway to determine the full scope and impact of this particular cybersecurity incident. The central question now is whether the unknown attackers could have siphoned off any sensitive patient health data. The healthcare provider has not yet disclosed the specific nature of the irregularities that were first initially detected.
The identity of the hackers who targeted the Humanomed Group’s hospital network also remains currently unknown to officials.
The Humanomed Group operates the Maria Hilf Private Clinic in Klagenfurt and the Villach-Warmbad Private Clinic. These two well-known healthcare facilities are central to the region’s medical infrastructure and serve many local patients. The incident underscores the growing threat of cyberattacks targeting healthcare providers and their critical third-party software vendors. Securing remote maintenance access points is a critical challenge for hospitals that rely on external service providers. The outcome of the investigation will determine the next steps for securing the network and protecting patient data.
Reference:
