Cyberattack paralyzes Logaritme, the largest healthcare distribution supplier in Catalonia

This week, Catalonia has experienced one of the most worrying cyberattacks in recent months. The largest distribution system for medical supplies in the community has been hacked, paralyzing the delivery of medicines, surgical equipment and basic products for hospitals and health centers. This incident once again highlights the urgent need for strengthening cybersecurity in the health sector, which remains one of the priority objectives of cybercriminals in 2025.

‍

What has happened?

The attack affected Logaritme Services Logistics, the company responsible for the distribution of medical equipment in Catalonia. Official sources have confirmed:

• Shortage risk of drugs, PPE and critical products if the blockade is prolonged.
• ‍A group of hackers carried out a ransomware attack, blocking systems and demanding an economic rescue to restore their operability.
• The Generalitat has activated a contingency plan to manually prioritize urgent supplies, avoiding total shortages in hospitals for the time being.

Although the rescue figure has not been revealed, experts suggest that it could exceed six digits, given the level of criticism of the affected service.

‍

Impact on Catalan healthcare and associated risks

This cyberattack has far-reaching direct and indirect consequences:

• Shortage risk of drugs, PPE and critical products if the blockade is prolonged.
• Interruption of scheduled surgeries or hospital treatments if the logistics flow is not restored in the coming days.
• Increase in manual workload and operational stress for pharmacists, logistics managers and hospital staff.
• Possible exposure of confidential data if ransomware involves information leaking as part of extortion.

‍

Key lessons: Why the healthcare sector is a critical target for cybercriminals

Cyberattacks on hospitals and healthcare companies are on the rise because of:

1. Its high criticism and urgency: people's lives depend on their continuity, increasing the likelihood of paying the ransom.
2. The management of sensitive and highly valued data on the black market.
3. Legacy systems or with low levels of updating and protection, especially in logistics and distribution environments.

According to recent studies, 74% of European healthcare organizations have experienced a serious cybersecurity incident in the past two years.

‍

How hospitals, distributors and healthcare companies can be protected

✅ Priority measures to prevent attacks

1. Implement a 24/7 SOC specialized in detection and response to cyber health threats.
2. Perform Threat Led Penetration Testing (TLPT) newspapers to identify breaches before attackers.
3. Develop and test a continuity and disaster recovery plan (DRP) realistic and up-to-date.
4. Apply the principle of Zero Trust in accesses, networks and privileged credentials.
5. Ensure the proper network segmentation, avoiding lateral movements in the event of a breach.
6. Train staff in cyber hygiene, phishing and secure password management.

‍

Is your healthcare organization prepared for a similar attack?

In Apolo Cybersecurity we help to:

• Assess your level of maturity in the face of cyber health threats
• Design action and digital resilience plans adapted to hospitals, pharmaceutical companies and distributors
• Implement SOC 24/7 with Threat Intelligence specialized in the healthcare sector
• Perform Threat Led Penetration Testing simulating ransomware aimed at critical infrastructures

✅ Request your free audit and specialized protection plan for the health sector

‍