Costa Rican Social Security Fund

The Costa Rican Social Security Fund, also known as CCCS or Costa Rica's Public Health Service, serves as the primary provider of public healthcare services within Costa Rica. Its operations encompass essential medical procedures, appointment scheduling systems, and the distribution of pharmaceuticals across the nation. This organization plays a critical role in delivering healthcare access to the Costa Rican population through a network of hospitals and clinics. Its core mandate involves managing health insurance and ensuring the provision of medical care under the country's social security system. The institution handles sensitive personal information extensively as part of its daily functions, including detailed patient medical histories and employee records necessary for administration and care coordination.

The scale of the CCCS's operations is significant, evidenced by its nationwide reach impacting healthcare delivery across Costa Rica. Its critical infrastructure supports essential services utilized by a large portion of the population, making its uninterrupted function vital for public health. A major cybersecurity incident in April 2022 starkly demonstrated the organization's extensive footprint and critical societal role. The disruption caused by this attack halted vital medical procedures and pharmaceutical distribution, forcing a widespread reversion to manual processes that caused operational delays throughout its facilities. This incident underscored the organization's position as a fundamental pillar of Costa Rica's public health infrastructure.

The Costa Rican Social Security Fund distinguishes itself through its centralized management of sensitive citizen data, including comprehensive employee databases and detailed patient records, which constitute highly valuable targets for cybercriminals. The April 2022 ransomware attack by the Conti group exploited this characteristic, encrypting critical systems and demanding a $10 million ransom while exfiltrating approximately 672 GB of sensitive data. The attackers subsequently leaked portions of this stolen data publicly to escalate pressure after the Costa Rican government refused negotiations. This incident highlighted the severe operational vulnerabilities and societal impact resulting from cyberattacks targeting such an essential public health entity reliant on digital systems for core functions.