Cyber Incident Victim: Hospital of Aftercare in Horažďovice
Date:
Jan 2021
Location:
Czechia
Summary
A cyberattack targeted the Hospital of Aftercare in Horažďovice, disrupting portions of its information systems. The facility resumed normal operations following the incident, with law enforcement actively investigating the attack. The National Office for Cyber and Information Security provided consultation to hospital management on enhancing preparedness against future threats. No further operational impacts or data compromises were disclosed.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
The Hospital of Aftercare in Horažďovice, Czech Republic, experienced a disruptive cyberattack targeting its information systems during the week preceding January 16, 2021. The attack occurred on or around January 9, 2021, and resulted in a partial operational outage, though the specific systems compromised were not detailed in public reports. Hospital staff were forced to operate under reduced technological capacity during the incident. Criminal investigators from Czech law enforcement agencies initiated an investigation to determine the origin and methodology of the attackers, though no attribution or motive was disclosed. The National Office for Cyber and Information Security (NÚKIB), the Czech Republic’s central cybersecurity authority, engaged directly with hospital management to assess the breach and provide guidance. Despite the disruption, the hospital restored full operational capabilities without restrictions by January 16, 2021, indicating a recovery period of approximately one week. No patient data compromise or clinical safety incidents were explicitly reported in available sources.
The incident prompted a coordinated response involving law enforcement and national cybersecurity experts, reflecting the heightened sensitivity surrounding attacks on healthcare infrastructure. Police investigators focused on uncovering the technical and logistical background of the attack, though no arrests or suspect details were publicly confirmed. NÚKIB’s consultation with hospital leadership emphasized improving preparedness for future cyber threats, though specific mitigation measures or policy changes were not disclosed. Media coverage highlighted the attack’s timing amid global concerns about healthcare sector vulnerabilities but did not establish connections to broader threat campaigns. The hospital’s return to normal operations without prolonged downtime suggested effective incident containment, though the full technical and financial impacts remained unquantified in public statements. Investigations remained ongoing as of the latest reports, with no additional compromises or related incidents disclosed.