Hacked healthcare software firm ChipSoft in negotiations with cybercriminals

Healthcare sector software provider ChipSoft is in active negotiations with cybercriminals who allegedly managed to steal patient data earlier this month. A spokesperson for the Amsterdam company confirmed the ongoing negotiations after broadcaster NOS first reported on the talks.

The possible perpetrator is the Embargo hacker group, NOS alleged. The collective reportedly threatened to publish data on the dark web this week, posting two countdown clocks as well. However, these have since been removed.

A ChipSoft spokesperson declined to comment on this. She stated that, in the interest of those involved, she could not provide details about the discussions. For example, she did not disclose information about those with whom the company is in talks, whether a ransom has been paid, or if a ransom will be paid.

Patient information and medical data was taken during the attack, including information from general practitioners' clients and individuals making use of rehabilitation centers. The Rotterdam Eye Hospital is currently the only hospital known to have been affected by the hack.

It is one of several major hacks recently announced in the Netherlands this week, including incidents involving Odido, the Ministry of Finance, the municipality of Epe, cosmetics brand Rituals, and travel platform Booking.com.

Headquartered in Amsterdam, ChipSoft claims to be the Dutch market leader with its health record software, HiX. Some 800 people work for the firm, which intends to expand in Europe.

Because many hospitals work with ChipSoft software, many online patient portals were shut down as a precaution. Several hospitals have since reported that patients can view their records online again.