Cyber Incident Victim: CHC MontLégia

The CHC Montlégia hospital in Liège experienced a cyberattack on or around November 1, 2022, disrupting its computer systems. The attack forced the hospital into an extended operational crisis, with critical IT infrastructure remaining offline for months following the incident. By February 2023, the hospital was still operating under a "red phase" designation, indicating severe ongoing disruption to normal workflows and digital services. No specific threat actor group claimed responsibility for the attack, and there was no public evidence of stolen data appearing on dark web leak sites or forums as of March 2023. The prolonged outage affected core hospital systems, though the exact scope of compromised infrastructure and specific attacker methodologies were not detailed in available reports.

Nearly four months post-attack, as of March 18, 2023, CHC Montlégia’s systems remained non-operational, reflecting significant recovery challenges. The incident highlighted systemic vulnerabilities in healthcare infrastructure, with recovery efforts extending far beyond initial containment phases. Hospital staff continued relying on alternative manual processes to maintain critical patient care services during the outage. The Brussels Times referenced the attack as part of broader concerns about cyber risks facing medical institutions. No further technical details regarding forensic investigations, ransom demands, or data exfiltration were publicly confirmed at the time of reporting.