Hackers Sell Access to Medical Data for 1.5 Million People

Written by Camilla Jessen

Nov.27 - 2024 10:12 AM CET

Trusted by

Technology
Photo: Shutterstock.com
Photo: Shutterstock.com
The attackers claim to have stolen data from a total of 1.5 million individuals.

Trending Now

Android Phones Get Huge Upgrade: Longer Battery Life
Photo: Shutterstock Police Warn About Keeping Bluetooth On, 'Avoid Bluesnarfing'

Hackers have made public the medical data of 750,000 French citizens following a cyberattack on MediBoard, an electronic patient record system.

The attackers claim to have stolen data from a total of 1.5 million individuals, including sensitive medical information. According to Bleeping Computer, a hacker or group using the aliases "nears" or "near2tlg" is offering access to MediBoard's systems for sale.

MediBoard is a French platform designed for the exchange of medical information between hospitals and doctors and is widely used across several French hospitals. The hackers assert that they have access to data for 1.5 million patients and are willing to sell it.

The stolen data reportedly includes personal information such as passport and identity documents, along with medical details like invoices, medication records, and appointments with doctors and specialists, according to Dutch media outlet Tweakers.

Also read

How to Tell If Your Phone Has Been Hacked

To demonstrate their access, the hackers are selling data for 758,912 patients separately. While this subset contains less detailed information, it still includes details about general practitioners and medication use.

At this time, it is unclear if the data being sold is legitimate, as no confirmed sales have occurred.

However, the mere existence of this breach places a significant number of French citizens at risk of having their sensitive medical information sold or exposed.

Softway Medical Group, the developer of MediBoard, confirmed to Bleeping Computer and other outlets that a security breach had occurred. According to the company, the attackers did not exploit a software vulnerability but instead gained access using stolen login credentials from an end user.

Notably, the stolen data is not hosted directly by Softway Medical Group but by the respective hospitals using the platform. The attack reportedly took place on November 19.

Details about how the hackers obtained the login credentials or managed to extract such a large amount of data remain unclear. Since the data is hosted by individual hospitals, the method of access and scale of the breach are still under investigation.

Also read

New Windows Update Causes Computer Crashes – Here’s How to Fix It
Many have wondered: Why Google Maps Disappeared from Google
Security Flaw in Android Phones Allows for Hacking: Check the List of Affected Models
Cybercrime
Photo: Shutterstock.com World
Netherlands

|

40 minutes ago
Netherlands Transfers Minesweeper to Ukraine
Photo: Wikimedia Commons News
US Politics

|

2 hours ago
Trump and Biden Begin Power Transition
Photo: Alan Wilson / Wikimedia Commons News
Ukraine/Russia

|

2 hours ago
Russian Forces Use Former Ukrainian Bombers in Attacks
Technology
Photo: Shutterstock.com
Samsung

|

1 day ago
Samsung Shuts Down Popular Podcast Service
TechnologyMicrosoft

|

4 days ago
Microsoft Pressures Windows 10 Users With Ads for New AI Computers
Photo: Shutterstock
Cybercrime

|

5 days ago
Police Warn About Keeping Bluetooth On, 'Avoid Bluesnarfing'
Android

|

5 days ago
Android Phones Get Huge Upgrade: Longer Battery Life
shoppingTemu

|

1 week ago
Amazon Launches New App to Compete With Temu and Shein
GoogleTechnology

|

1 week ago
U.S. Justice Department Moves to Break Up Google, Targets Chrome
Photo: Shutterstock
Coca ColaAppleNikePepsiCo

|

1 week ago
Forget Coca-Cola and Nike — The Top Logo Spot Goes to a Software Giant
Bitcoin

|

1 week ago
Russia to Ban Bitcoin Mining in Occupied Ukraine