An Internet user put up for sale, Tuesday, November 19, what he presents as the medical data of more than 750,000 people, which he claims to have stolen from a “French hospital”. Name, first name, date of birth, address or even telephone number… The very short sample presented on the hacker forum – on which it has recently been active – contains a lot of personal data. In some cases, we also observe very sensitive health data, such as drug allergies or symptoms presented by patients, as well as prescriptions or a list of treating doctors.
The seller claims to have obtained these items through Mediboard. For healthcare establishments, this software makes it possible to manage computerized patient files (DPI), which centralize information concerning each of them. As he previously explained to the Clubic site, Softway Medical, the group which publishes this program, assures Monde that the attack did not target its own computer network but one of its clients, which hosts Mediboard on its own.
“At this time, our in-depth investigations, still ongoing, confirm that our Mediboard software is not involved in this cyberattack”defends the company in a press release, published Tuesday. “One of this client’s user accounts was usurped, and the person used the rights to access standard functions”details in Monde Sherley Brothier, technical director of Softway Medical. His company has around a hundred clients using Mediboard.
Read the decryption | Article reserved for our subscribers “Infostealers”, this small cybercrime that thrives in the shadow of ransomware
Read later
A common platform concerned?
The identity of the customer who was the victim of this leak remains unknown at this time. However, certain elements suggest that it is an online platform managed by a group of clinics and retirement homes. Several people who use it have in fact recently been victims of password-stealing malware (called « infostealers »), according to the company Hudson Rock, which monitors the very lucrative markets where stolen identifiers are sold and bought. The hacker behind the auction also claimed, on Tuesday, to have access to a platform allowing medical records to be retrieved, while listing the establishments concerned: all of them belong to the same group of clinics.
You have 26.85% of this article left to read. The rest is reserved for subscribers.
Related News :