- Cyber attack targets French healthcare software provider
- Patient administrative data and limited medical notes were exfiltrated
- The company confirmed the breach and notified authorities
French software company Cegedim Santé, which builds solutions for the healthcare industry, has confirmed it was hit by a cyber attack that saw it lose sensitive data on thousands of people.
In a press release, the company said that in late 2025 it discovered “abnormal application request behavior” on doctors using the MonLogicielMedical (MLM) product.
MonLogicielMedical is a web-based administration application designed to help healthcare professionals manage their daily administrative and clinical tasks online. It allows users to access and update patient records, schedules, prescriptions, billing and other practice data from any browser or mobile device.
Sexual orientation and condition history revealed
Cegedim Santé claims that around 3,800 doctors in France use MonLogicielMedical, of which 1,500 were affected by this attack.
“As soon as the incident was discovered in late 2025, all necessary measures were taken to deal with it and it was contained,” the announcement reads. “In accordance with our legal obligations, we have taken all legal steps, including notification to the CNIL and filing a complaint with the public prosecutor.”
After an internal investigation, Cegedim Santé concluded that the attackers exfiltrated data from patients’ administrative files, including full names, gender data, dates of birth, phone numbers, postal and email addresses, and administrative comments.
“For a very limited number of patients, these comments may have contained personal notes from the physician regarding sensitive information. The patients’ structured medical records remained intact.”
What makes this incident particularly interesting is that Cegedim Santé is a supplier to the French Ministry of Health. A total of 15.8 million medical records were captured, including 165,000 files of medical notes.
The news initially broke on the country’s France 24 broadcaster, which reportedly said the data included details of conditions such as HIV/AIDS as well as people’s sexual orientation. Some of the country’s top politicians are apparently among those affected.
Via The register
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds. Be sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, video unboxings, and get regular updates from us on WhatsApp also.
