Cyber Incident Victim: Coradix-Magnescan

On May 7, 2024, the Coradix-Magnescan medical imaging group in France's Pyrénées-Orientales region confirmed a cyberattack impacting its network infrastructure. The incident originated from a system malfunction detected on the morning of Friday, May 3, during routine startup procedures, though the full scope of unauthorized access wasn't recognized until Tuesday, May 7. This intrusion affected four facilities: the Saint-Pierre imaging center, Méditerranée polyclinic, Argelès-sur-Mer center, and Vallespir facility in Céret. Technical teams immediately implemented containment protocols to isolate the breach upon discovery, while corporate leadership notified relevant authorities. Preliminary investigations conducted with external cybersecurity specialists found no evidence of data exfiltration or patient information compromise at that stage.

The attack forced all affected sites into degraded operational modes, significantly disrupting appointment scheduling systems while clinical teams maintained essential imaging services manually. Coradix-Magnescan's management publicly acknowledged ongoing challenges in booking new radiology exams, anticipating continued scheduling difficulties in subsequent days despite staff working extended hours to minimize patient impact. The organization filed a formal criminal complaint at Perpignan police headquarters, triggering an active law enforcement investigation into the attack's origins. Internal IT personnel remained fully engaged with cybersecurity experts to restore systems, with recovery timelines undisclosed as forensic work continued. Company communications emphasized gratitude for patient patience while reaffirming commitments to safeguard medical operations, partner interests, and employee welfare throughout the disruption.