AZ Monica Antwerp Hospital Reopens at Half Capacity After Cyber Attack

Antwerp (Brussels Morning Newspaper) January 14, 2026 – AZ Monica hospital in Antwerp will reopen its doors tomorrow after a cyber attack disrupted operations last week. The facility plans to operate at half capacity initially to ensure patient safety and system stability. Full restoration efforts continue with support from national cybersecurity authorities.

AZ Monica, one of Antwerp’s largest general hospitals, suffered a ransomware attack on 7 January 2026, forcing a complete shutdown of IT systems, including patient records and emergency services. Hospital management confirmed the reopening during a press conference today, stating that critical systems have been restored. Patient appointments resume selectively from 15 January.

The attack affected all four AZ Monica sites in Antwerp, Deurne, and Edegem, impacting 1,200 staff and daily patient volumes of 2,500. Emergency care transferred to nearby UZA and Stuivenberg hospitals during closure. No patient data breaches reported as backups remained offline.

Details of the Cyber Attack and Immediate Response

Intruders encrypted hospital servers at 4:15 AM on 7 January, displaying a ransom demand on all terminals. AZ Monica activated its incident response plan within 30 minutes, isolating networks and switching to paper-based operations. National Cyber Emergency Response Team (CERT.be) arrived by 9 AM to assist.

Hospital CEO Dirk Draulans reported that attackers originated from an Eastern European IP address, per preliminary forensics. No ransom paid; restoration relied on segmented backups tested quarterly. Power outages avoided through diesel generators supporting manual triage.

Belgian health ministry dispatched experts from the Federal Public Service Health on day one. Patient transfers totalled 450 cases, with 120 ambulances redirected. Staff worked 12-hour shifts using printed protocols.

Reopening Plan and Capacity Measures

Tomorrow’s reopening starts at 7 AM, with outpatient clinics at 50% capacity and emergencies prioritised. Surgery schedules reduced to urgent cases only, targeting 200 operations weekly versus 400 pre-attack. Radiology and labs operate intermittently.

IT recovery reaches 70% completion, with electronic health records partially online. Paper backups ensure continuity. Full capacity projected for 1 February pending stress tests. Visitor policies limit access to one per patient.

Site-specific plans vary: Antwerp main campus handles internals, Deurne focuses on oncology, Edegem on maternity. Parking and public transport warnings issued due to expected queues.

Statements from Hospital Leadership and Authorities

CEO Dirk Draulans stated, “AZ Monica Antwerp reopens tomorrow at half capacity after the cyber attack, prioritising vulnerable patients.” He thanked staff for maintaining care standards offline.

Health Minister Frank Vandenbroucke visited on 10 January, announcing €5 million in national funding for hospital cybersecurity upgrades. He confirmed, “No evidence of data exfiltration; patient privacy intact.”

National Cybersecurity Coordinator Philippe Close reported, “Attack mirrors ransomware waves targeting European healthcare since 2024.” CERT.be leads the investigation with Europol liaison.

Nurses’ union representative Anja Neyskens noted, “Staff trained extensively; manual operations proved resilient despite exhaustion.”

Impact on Patients and Staff

Over 8,000 appointments cancelled, with rescheduling letters mailed today. Chronic patients received phone triages. No deaths linked to disruptions, per hospital logs. Mental health support offered to staff.

The attack halted chemotherapy for 150 oncology patients, transferred to Gasthuiszusters Antwerpen. Maternity services unaffected beyond administrative delays. Laboratory results backlog cleared manually.

Staff numbers held steady at 1,200 full-time equivalents. Overtime compensated via emergency funds. Training sessions on phishing resumed internally.

Broader Context of Healthcare Cyber Threats in Belgium

Belgium recorded 45 healthcare cyber incidents in 2025, up 30% from 2024, per Centre for Cybersecurity Belgium (CCB) data. AZ Monica joins UZ Gent and CHU Saint-Pierre as major targets.

Flemish hospitals invested €20 million in cybersecurity post-2024 EU directive. National Health System Platform mandates annual audits since 2023. Ransomware groups like LockBit claimed 12 Belgian victims last year.

European Commission allocated €50 million via Digital Europe Programme for cross-border health IT defences. Belgium participates in ENISA’s healthcare working group.

Government and Industry Response Measures

Prime Minister Alexander De Croo convened a crisis meeting on 8 January, establishing a task force. New legislation proposes mandatory incident reporting within 24 hours.

Flemish Minister for Health Hilde Crevits pledged €10 million for Antwerp province hospitals. Public procurement for firewalls expedited.

Industry group Healthcare IT Belgium organised webinars, reaching 500 CIOs. Vendor contracts reviewed for zero-trust architectures.

Recovery Timeline and Future Safeguards

Systems undergo penetration testing this week. Backup restoration completes 90% by 20 January. Staff retraining targets 100% completion by month-end.

Long-term plans include AI-driven threat detection and blockchain for records. Budget requests submitted for €15 million over three years. Quarterly drills mandated.

Patient communication centres handle 500 calls daily. Hotline remains active through February.

Economic and Operational Costs

Direct costs exceed €3 million, including forensics and overtime. Lost revenue estimated at €1.5 million daily during closure. Insurance covers 80%. Regional health inspectorate monitors compliance. The provincial council allocated emergency grants.