Healthcare IT solutions provider ChipSoft hit by ransomware attack

Dutch healthcare software vendor ChipSoft has been impacted by a ransomware attack that forced the company to take offline its website and digital services for patients and healthcare providers.

ChipSoft is a large provider of Electronic Health Record (EHR) systems in the Netherlands. Its flagship platform, HiX, is used by many Dutch hospitals.

Earlier this week, users on Reddit reported that the digital solutions developer for the healthcare sector was affected by a cybersecurity incident.

Local media confirmed that the company was hit by a cyberattack, based on an internal memo ChipSoft circulated to healthcare institutions, alerting them of “possible unauthorized access.”

The IT services provider reportedly assured healthcare center operators that it was taking all measures to “limit the adverse consequences as much as possible,” while advising them to disconnect from its systems until the cleanup is completed.

Yesterday, the country’s computer emergency response team for cybersecurity in healthcare (Z-CERT) announced that a ransomware incident had impacted ChipSoft.

The agency stated that it is working with the firm and healthcare institutions to identify the impact and help them recover.

As a precaution, ChipSoft disabled all connections to its Zorgportaal, HiX Mobile, and Zorgplatform digital health services.

While some media outlets in the Netherlands said that most patient-facing systems are working normally, there have also been multiple reports that the same systems are unavailable at various hospitals.

Confirmed reports about system outages concern Sint Jans Gasthuis in Weert, the Laurentius in Roermond, the VieCuri hospital in Venlo, and the Flevo Hospital in Almere.

BleepingComputer has contacted ChipSoft to ask for more information about the incident, but we have not received a response by publication time.

Cyberattacks on healthcare IT system providers can be very damaging and lucrative for threat actors, as these companies operate information hubs for multiple healthcare centers, managing troves of sensitive data.

Last month, healthcare IT firm CareCloud disclosed a data breach incident that exposed sensitive data and caused a multi-hour service disruption.

Earlier in March 2026, Cognizant’s healthcare IT company, TriZetto Provider Solutions, suffered a data breach that exposed the sensitive information of over 3.4 million people.

Automated Pentesting Covers Only 1 of 6 Surfaces.

Automated pentesting proves the path exists. BAS proves whether your controls stop it. Most teams run one without the other.

This whitepaper maps six validation surfaces, shows where coverage ends, and provides practitioners with three diagnostic questions for any tool evaluation.

Get Your Copy Now