ASL TO2

ASL TO2, known as the Azienda Sanitaria Locale Torino 2, operates as a public healthcare authority serving the city of Turin and its surrounding metropolitan area in the Piedmont region of Italy. As a local health unit within the Italian National Health Service (SSN), it provides a comprehensive range of medical services, including primary care, hospital services, preventive medicine, and community health programs to a defined resident population. The organization functions under the regional health governance structure of Piedmont, adhering to national healthcare regulations and standards. Its infrastructure includes multiple clinics, hospitals, and administrative offices, positioning it as a critical component of the public health safety net for one of Italy's major urban centers. The scope of its mandate encompasses both curative and public health functions, managing everything from routine general practice to specialized outpatient care and local health surveillance.

The organization's operational history includes a significant cybersecurity incident documented on August 21, 2016. During this event, hacker collectives associated with Anonymous Italia and AntiSec-Italia, acting under the banner of their #OpSafePharma campaign, successfully breached the digital systems of ASL TO2 along with three other Italian healthcare entities. The attackers' stated motive was to protest national guidelines for Attention Deficit Hyperactivity Disorder (ADHD) treatment, which they perceived as improperly favoring pharmaceutical interventions over alternative therapies. The intrusion resulted in the exfiltration of approximately 2.5 gigabytes of sensitive data from two of the four compromised clinics, including ASL TO2. Leaked materials subsequently published online comprised internal email communications, employee curriculum vitae, scanned patient application forms, and pharmaceutical inventory records. Concurrently, the attackers defaced the public-facing websites of the targeted organizations. Cybersecurity analysis of the breach characterized the attack as primarily opportunistic rather than part of a deeply strategic, long-term campaign against the specific institutions, though it aligned with the groups' broader objective to challenge perceived pharmaceutical industry influence on medical protocols. This incident marked an escalation in the groups' tactics against the health sector, moving from earlier distributed denial-of-service (DDoS) actions to direct data theft and public disclosure.