lockbit3 attacks Centre Hospitalier ud Francilien

Incident Date:

September 12, 2022

World map



lockbit3 attacks Centre Hospitalier ud Francilien


Centre Hospitalier ud Francilien




Rue Pierre Fontaine, France

Évry-Courcouronnes, France

First Reported

September 12, 2022

Centre Hospitalier de France: A Target for Lockbit3 Ransomware Attack

Centre Hospitalier de France (CHSF), a healthcare services provider, has been targeted by the ransomware group Lockbit3. The attack was announced on the group's dark web leak site. CHSF operates in the Healthcare Services sector and has been affected by the ransomware attack.

Company Overview

Centre Hospitalier de France is a healthcare services provider with a focus on education and training. The organization offers a range of services, including the formation infirmier(e) diplôme d'Etat, which is a professional training program for nurses. The company's website provides information on the application process for the program, including the dates for document submission and the selection process.

Vulnerabilities and Targeting

Ransomware attacks often target organizations with weak cybersecurity defenses. In the case of CHSF, the attackers likely exploited vulnerabilities in the organization's systems to gain access and deploy the ransomware. The specific vulnerabilities are not mentioned, but it is known that ransomware groups often use known vulnerabilities in software and hardware to infiltrate networks.

Industry Impact

The healthcare sector is a common target for ransomware attacks due to the sensitive nature of the data they handle. In 2022, education, government, and healthcare were the top three most frequently targeted industries. The impact of a ransomware attack on a healthcare provider can be severe, as it can disrupt patient care, compromise sensitive patient data, and result in financial losses.

Mitigation Strategies

To mitigate the risk of ransomware attacks, organizations should implement robust cybersecurity measures, such as regular software updates, strong password policies, and employee training on cybersecurity best practices. Additionally, having a well-defined incident response plan can help organizations respond effectively to ransomware attacks and minimize the impact.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.