Former IT Security Officer Arrested for Cyberattack on French Hospital Group

The October 2024 attack disrupted hospital operations, demanding a ransom of over €626,000, and led investigators to a 26-year-old former employee.

The cyberattack targeted the Groupe Hospitalier Grand Ouest (GHGO) in early October 2024, affecting nine facilities across western France, particularly the La Sagesse clinic in Rennes.
The attack, identified as a Distributed Denial of Service (DDoS), paralyzed hospital systems and forced the postponement of several surgeries.
Investigators traced the attack to an internal compromise, identifying the suspect through technical evidence, including their IP address.
The 26-year-old former IT security officer of GHGO was arrested on December 17, 2024, and placed under judicial supervision.
The suspect faces up to five years in prison and a €150,000 fine and is scheduled to appear before the Paris judicial court on February 6, 2025.