Cyber Incident Victim: Samodzielny Publiczny Zespół Opieki Zdrowotnej w Pajęcznie

On February 10, 2022, Samodzielny Publiczny Zespół Opieki Zdrowotnej w Pajęcznie (SP ZOZ Pajęcznie) publicly announced a system failure causing operational disruptions, specifically hindering access to digital patient records. Initial communications framed the event as a technical malfunction, but subsequent unofficial investigations revealed a far more severe situation involving malicious cyber activity. Hackers had breached the healthcare provider's IT infrastructure and executed a ransomware attack, encrypting nearly all institutional files. The attackers subsequently issued a ransom demand for data decryption, described as a "large payment" in magnitude, though specific financial terms remained undisclosed. This encryption-based disruption directly impacted core medical operations by restricting access to critical patient information systems essential for clinical workflows.

The attack's full scope remained unclear at the time of reporting, with unconfirmed indications that threat actors might have exfiltrated organizational data prior to encryption. Hospital administration declined official commentary on the incident's technical details, operational consequences, or negotiation status with the attackers, citing preservation of investigative integrity as justification. No information was disclosed regarding containment measures, system restoration timelines, or potential data compromise notifications. External cybersecurity or law enforcement involvement remained unverified in available reporting, though the reference to an ongoing investigation implied official engagement. Operational disruptions persisted following the initial announcement, with no public resolution timeline provided by the healthcare facility.