The attack, initially thought to affect 485,000 women on the national cervical cancer screening program, has been found to include personal details and medical records spanning from a variety of diagnostic tests.

Data With Different Medical Test Results
The breach gives details of intimate results from tests for skin, urine, penis, vagina, anus, and wound fluid. To make things worse, some of this stolen data has already landed on the dark web.



The records disclose the names and home addresses of about two million people in addition to their birthdates, social security numbers, detailed test results, and which medical advice was provided after testing.

Hospitals and Clinics Impacted
One of the healthcare facilities is Leiden University Medical Center (Leids Universitair Medisch Centrum), while another is linked with Amphia Hospital and Alrijne Hospital.

It also gathered data from hundreds of general practitioners and non-affiliated clinics.

The breach began in 2022 and extended to 2025, meaning that it affected test results over a significant period of time.

General Practitioner Data Also Leaked
As viewed by the insurance giant, files pertaining to 53,516 patients who had required tests through their doctors were reviewed.

Experts estimate that this is only a tiny portion of the complete stolen data.

While the hackers have said that t.