Cyber Incident Victim: Valisana

On July 20, 2024, Valisana, a healthcare provider operating neuro-locomotor rehabilitation (Valida) and psychiatric services (Sanatia) across multiple facilities, experienced a confirmed ransomware attack. The incident disrupted the organization's IT systems, prompting immediate containment measures to protect patient data. Valisana engaged cybersecurity experts and relevant authorities to investigate the attack's scope and initiate system restoration efforts. Despite the operational disruption, the organization maintained patient care continuity through alternative procedures at its Valida polyclinic and Institut Psychothérapeutique Intégré (I.P.I.) locations. No specific technical details about the attack vector, compromised systems, or data exfiltration were disclosed in the public statement.

The attack prompted Valisana to prioritize transparency, committing to regular updates via its website and internal channels for patients, staff, and the public. While explicitly acknowledging concerns about personal data protection, the organization affirmed that patient information security and confidentiality remained paramount. Operational impacts included the implementation of alternative care protocols across its three psychiatric facilities—a psychiatric clinic, day center, and psychiatric care home—alongside its neuro-rehabilitation services. Valisana publicly recognized staff efforts in managing the incident and reiterated plans to strengthen security systems to prevent future attacks. The organization did not disclose ransom payment status, data breach specifics, or detailed restoration timelines in its initial communication.