Cyberaanval op huisartsenpraktijk: gevoelige patiëntgegevens mogelijk gelekt
Midden-Delfland, maandag, 20 april 2026.
Een cyberaanval via softwareleverancier ChipSoft heeft mogelijk toegang gegeven tot gevoelige patiëntendossiers van huisartsenpraktijk De Eerste Lijn in Den Hoorn, Midden-Delfland. Criminelen hebben volgens de praktijk hoogstwaarschijnlijk gegevens gestolen, waaronder medische informatie. De praktijk heeft direct actie ondernomen en werkt samen met cybersecurity-experts en de Autoriteit Persoonsgegevens. Omdat het precies welke gegevens zijn geraakt nog onduidelijk is, moeten patiënten extra alert zijn op misbruik. De zorgportalen zijn uit voorzorg uitgeschakeld, maar reguliere zorg gaat gewoon door. Dit incident is onderdeel van een grotere hack die tientallen zorginstellingen in Nederland raakt.
Cyberattack impacts patient records through software supplier breach
A cyberattack on healthcare software provider ChipSoft has compromised sensitive patient data at De Eerste Lijn GP practice in Den Hoorn, located in the municipality of Midden-Delfland. The attackers likely accessed and stole personal health records stored in electronic systems. The practice confirmed the breach after discovering unauthorized access linked to the wider attack on ChipSoft earlier this month [1]. Patients are advised to remain vigilant for potential misuse of their personal information due to the sensitivity of the exposed data [1].
Practice responds swiftly amid ongoing investigation
Following the discovery of the breach, the GP practice took immediate action by disabling its online patient portal as a preventive measure. Clinical care continues uninterrupted despite the digital disruption [1]. The practice is working closely with cybersecurity specialists and has formally reported the incident to the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) [1]. At this stage, it remains unclear which specific types of patient data were affected [1]. Full forensic analysis is underway to determine the scope of the compromise [1].
Wider national implications for healthcare providers
This incident forms part of a larger cyberattack affecting numerous healthcare institutions across the Netherlands via the shared ChipSoft platform [1]. Both hospitals and dozens of general practitioner practices may have been impacted [1]. While most affected clinics are reportedly concentrated in North Limburg, the reach extends nationwide [1]. ChipSoft’s software enables medical professionals to store patient files and allows patients to communicate securely with caregivers, increasing the severity of the breach [1]. The ransomware attack on ChipSoft occurred on April 7, 2026 [1].