**ChipSoft**, a prominent provider of Electronic Health Record (EHR) systems in the Netherlands, is grappling with a ransomware attack that has severely disrupted its services. The company's flagship platform, HiX, is utilized by numerous Dutch hospitals, making the incident a significant concern for the healthcare sector. ### Incident Timeline and Response Reports of a cybersecurity incident affecting the healthcare sector developer surfaced earlier this week on Reddit. Subsequently, local media confirmed the cyberattack, citing an internal memo circulated by **ChipSoft** to healthcare institutions, warning of “possible unauthorized access.” The IT services provider assured healthcare centers that it was taking all necessary measures to minimize the impact, advising them to disconnect from its systems until the cleanup is complete. ### Z-CERT Involvement Yesterday, the Dutch computer emergency response team for cybersecurity in healthcare (**Z-CERT**) officially announced that a ransomware incident had impacted **ChipSoft**. **Z-CERT** is actively collaborating with the firm and affected healthcare institutions to assess the extent of the damage and facilitate recovery efforts. As a precautionary measure, **ChipSoft** has disabled all connections to its Zorgportaal, HiX Mobile, and Zorgplatform digital health services. ### Impact on Healthcare Services While some reports suggest that most patient-facing systems are functioning normally, numerous accounts indicate system unavailability at various hospitals. Confirmed outages have been reported at Sint Jans Gasthuis in Weert, the Laurentius in Roermond, the VieCuri hospital in Venlo, and the Flevo Hospital in Almere. BleepingComputer has reached out to **ChipSoft** for further details regarding the incident, but a response has not yet been received. ### Healthcare Sector Under Threat Cyberattacks targeting healthcare IT system providers pose a significant threat, as these companies manage vast repositories of sensitive data for multiple healthcare centers. The potential for disruption and data compromise makes them lucrative targets for malicious actors. Last month, healthcare IT firm **CareCloud** disclosed a data breach that exposed sensitive data and caused a multi-hour service disruption. Earlier in March 2026, **Cognizant’s** healthcare IT company, TriZetto Provider Solutions, suffered a data breach that exposed the sensitive information of over 3.4 million people.