A massive leak of personal data from patients, including names, phone numbers, and doctor's notes, has occurred due to a cyberattack affecting a software used by 3,800 doctors in France.
A serious cyberattack has led to the massive leak of personal data pertaining to patients in France, with estimates suggesting that between 11 to 15 million individuals might be affected. This data includes sensitive information such as names, phone numbers, and personal annotations made by doctors. The software provider, Cegedim SantΓ©, has been aware of "abnormal behavior in application requests" since late 2025 but has not fully confirmed the extent of the breach.
Cegedim SantΓ©, which provides the MLM (monlogicielmedical.com) software used by approximately 3,800 physicians across France, has reported that about 1,500 of these accounts have been compromised. The company is conducting investigations to determine the full scope of the breach and its implications for the affected patients and healthcare providers. The lack of confirmation regarding the number of affected individuals raises questions about the transparency of the situation and the potential risks for those whose data has been leaked.
This cyberattack highlights the ongoing vulnerabilities in the healthcare sector's data management and the significant risks associated with personal health information. As the situation unfolds, it may prompt a review of data security practices in medical software and a discussion on regulatory measures to protect patient data. The incident underscores the need for heightened security protocols and greater oversight in the management of medical data to prevent such breaches in the future.
