French technology and data services company serving healthcare and business markets.
Cegedim Sante, the French medical-software subsidiary of the Cegedim group, suffered a major breach affecting roughly 15.8 million records, detected via unusual activity on its MonLogicielMedical (MLM) electronic patient-record product (used by ~3,800 French doctors). After a failed extortion attempt, threat actors marketed the data on dark-web forums and Telegram in early 2026. Exposed data included names, gender, dates of birth, phone numbers, home addresses, emails, French national identification numbers, and, for subsets, doctors' notes and sensitive health conditions such as HIV/AIDS status and sexual orientation (about 165,000 files contained doctors' notes). (NOTE: prior record listed 445,435 email addresses only; this materially understated a ~15.8M-record breach with SSN-equivalent, medical, and special-category data - corrected.)
ObscureIQ assessment: High risk because the company sits inside healthcare data flows at scale. Exposure can enable medical fraud, identity theft, provider impersonation, and sensitive healthcare-data profiling.
The breach exposed one of the largest volumes of French medical data on record, roughly 15.8 million records, including patient names, dates of birth, contact details, French national identification (Social Security) numbers, doctors' notes, and sensitive health information such as HIV/AIDS status and sexual orientation for some individuals. The combination of identity, national-ID, and special-category health data creates severe identity-theft, medical-fraud, discrimination, extortion, and outing risks at national scale, with major GDPR/regulatory consequences.
Cegedim, through its subsidiary Cegedim Sante, is a major French health-technology and data-services group that provides medical software to physicians (including the MonLogicielMedical/MLM electronic patient-record product used by thousands of French doctors) and healthcare data/SaaS services. As a health-data processor, it holds large volumes of patient and physician records on behalf of the French healthcare system.
Healthcare data and technology providers collect identity, contact, billing, provider, patient, prescription, and workflow data across SaaS, analytics, and healthcare-administration systems.
Cegedim Sante detected unusual activity on its MonLogicielMedical (MLM) product in late 2025 and filed a criminal complaint. After a failed extortion attempt, threat actors began marketing the stolen dataset on dark-web forums and Telegram in early 2026. French media and authorities reported one of the largest medical data leaks in French history; Cegedim had previously faced GDPR enforcement.
Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.
If you believe your information may be included:
Cegedim Sante, the French medical-software subsidiary of the Cegedim group, suffered a major breach affecting roughly 15.8 million records, detected via unusual activity on its MonLogicielMedical (MLM) electronic patient-record product (used by ~3,800 French doctors). After a failed extortion…
Verified fields include Date of Birth, Email Address, Full Name, Gender, Government ID, Medical Diagnosis, Phone Number, Physical Address, Sexual Orientation, Social Security Number.
Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.
Every claim on this page is traceable. This breach draws on:
Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.
Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.
Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.
Request Consultation