Cyber Incident Victim: Centre Hospitalier de la Polynésie française
Date:
Feb 2025
Location:
French Polynesia
Summary
The Centre Hospitalier de la Polynésie française experienced a cybersecurity incident involving numerous external login attempts, prompting an activated security alert and protective measures. The hospital isolated its information system from the internet as a precautionary step to neutralize potential threats and analyze for intrusions or malware, though no compromise of medical, technical, or administrative data occurred. While external communications were temporarily disrupted, patient care operations remained unaffected, with efforts focused on restoring full communication capabilities securely. The incident aligns with broader global cyberattack trends targeting healthcare institutions.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On February 10, 2025, the Centre Hospitalier de la Polynésie française (CHPF) detected a cybersecurity incident following multiple external login attempts targeting its information systems. The hospital’s security alert system triggered in response to these anomalous activities, which authorities preliminarily associated with an ongoing global campaign of similar cyberattacks. CHPF immediately activated protective protocols upon identifying the threat, implementing network security measures to safeguard critical infrastructure. Initial assessments indicated no compromise of medical, technical, or administrative data, with hospital software remaining fully operational throughout the incident. As a precautionary measure aligned with cybersecurity provider recommendations, CHPF disconnected its information systems from the internet to prevent potential intrusion escalation. This isolation aimed to neutralize active threats while facilitating forensic analysis to verify system integrity and identify possible malware implantation.
The internet disconnection temporarily disrupted external communications but did not degrade patient care operations, according to hospital statements. CHPF emphasized maintaining clinical services despite logistical challenges caused by the quarantine measures. Hospital administrators prioritized restoring secure communication channels while preserving data security protocols for medical and administrative records. The incident highlighted broader concerns about healthcare sector vulnerabilities, referencing a November 2024 French National Cybersecurity Agency (ANSSI) report on escalating data theft risks in medical institutions. CHPF committed to reactivating full operational capabilities following comprehensive system verification, balancing service resumption with ongoing threat mitigation efforts. No evidence of successful data exfiltration or ransomware deployment was disclosed in the initial public reporting.