Azienda Ospedaliera SS. Antonio e Biagio e Cesare Arrigo

Azienda Ospedaliera SS. Antonio e Biagio e Cesare Arrigo, also known as Azienda Ospedaliera di Alessandria, is a hospital authority located in Alessandria, Italy. It provides a range of healthcare services to the resident population, including emergency medical treatment, inpatient care, outpatient consultations, and diagnostic examinations. As part of Italy’s public health system, the organization delivers services that are funded through the National Health Service and is tasked with meeting the medical needs of the community. Its facilities support both general medicine and various specialist departments, although specific specialties are not detailed in the available sources. The institution operates under the regulatory framework that governs public healthcare providers in the country.

The organization’s headquarters are situated in Alessandria, placing it within the Piedmont region of northern Italy. While precise figures regarding bed capacity, staff numbers, or annual patient volume are not disclosed in the provided material, the hospital serves as a key healthcare provider for the local area. Its role includes coordinating care across multiple clinical units and supporting continuity of treatment for patients requiring ongoing medical attention. The institution’s integration into the regional health network enables referrals and collaboration with other healthcare entities in the vicinity. These operational aspects position it as a component of the broader public healthcare infrastructure serving Alessandria and surrounding communities.

In December 2022, the hospital experienced a cyberattack carried out by the ransomware group Ragnar Locker, which resulted in the exfiltration of approximately one terabyte of sensitive data. The stolen information encompassed personal identifiers, medical records, financial reports, and various departmental documents, according to the group’s claims. Ragnar Locker asserted that it had achieved full network compromise and criticized the organization’s IT security posture, alleging negligence on the part of staff who reportedly failed to detect the breach despite evidence being presented. The attackers threatened to publish the exfiltrated data unless contacted, while emphasizing that they avoided actions that would directly endanger patient health. They also accused the hospital of inadequate data protection practices, attributing the breach to administrative incompetence and budget mismanagement within the institution.