City
Epaper

Hackers now selling 1.5 lakh patients' data of TN hospital on Dark Web

By IANS | Published: December 02, 2022 3:00 PM

Bengaluru, Dec 2 As AIIMS-Delhi struggles to recover from a massive ransomware attack, hackers are currently selling at ...

Open in App

Bengaluru, Dec 2 As AIIMS-Delhi struggles to recover from a massive ransomware attack, hackers are currently selling at least 1.5 lakh patients' data records belonging to Tamil Nadu-based multispecialty hospital called Sree Saran Medical Center for hundreds of dollars on the Dark Web, cyber-security researchers revealed on Friday.

The stolen database is advertised for $100, meaning that multiple copies of the database would be sold. For actors seeking to be the exclusive owner of the database, the price is raised to $300 and if the owner intends to resell the database, the quoted price is $400.

The cyber attack came on the heels of the massive AIIMS ransomware attack that has crippled nation's premier healthcare institution for days.

According to security researchers from AI-driven cyber-security firm CloudSEK, the data fields being sold on the Dark Web include patient name, guardian name, date of birth, doctor's details and address information.

The data was allegedly sourced from a compromised third-party vendor, Three Cube IT Lab, the report claimed. However, CloudSEK said it had no information that ThreeCube may be operating as a software vendor for Sree Saran Medical Center.

"A sample was shared as proof for potential buyers to inspect the authenticity of the data. This data was found to be containing patient details from a hospital, based in Tamil Nadu. The sample image has data records dated from the years 2007-2011," the report mentioned.

CloudSEK's AI digital risk platform XVigil discovered a post made by a threat actor, advertising sensitive data allegedly sourced from Three Cube IT Lab India.

CloudSEK said it has informed all the stakeholders about the incident.

"The sensitive data that was stolen from Three Cube IT Lab has been advertised on popular cybercrime forums and a Telegram channel used to sell databases and which is frequented by threat actors," the report noted.

"We can term this incident as a supply chain attack, since the IT vendor of the Hospital, in this case Three Cube IT Lab, was targeted first," said Noel Varghese, Threat Analyst, CloudSEK.

Using the access to the vendor's systems as initial foothold, "the threat actor was able to exfiltrate Personally identifiable information (PII) and Protected Health Information (PHI) of their hospital clients," Varghese added.

CloudSEK's researchers used the names of doctors from the database, in order to identify the healthcare firm, whose data was present in the sample.

They were able to identify that the doctors work at a medical firm known as Sree Saran Medical Center.

Meanwhile, nearly 1.9 million cyber attacks have been recorded on the Indian healthcare network this year, especially from countries like Pakistan, China and Vietnam, according to the CyberPeace Foundation and Autobot Infosec Private Ltd, along with the academic partners under CyberPeace Center of Excellence (CCoE).

Disclaimer: This post has been auto-published from an agency feed without any modifications to the text and has not been reviewed by an editor

Tags: DECNoel vargheseindiaSaranAiimsIndiUk-indiaRepublic of indiaIndia indiaGia indiaIndia euIca india
Open in App

Related Stories

HealthJoey Florez Addresses Global Mental Health Crisis: From India To Brazil

NationalIndia’s 2025 Census to Begin: Major Changes Expected in Lok Sabha Constituencies

EntertainmentShardha Sinha Health Update: ’Hum Aapke Hain Kaun’ Singer on Oxygen Support

MaharashtraAAP Chief Arvind Kejriwal to Campaign for INDIA Bloc Parties in Maharashtra Assembly Elections

HockeyIND vs GER: India Men's Hockey Team Loses 0-2 Against Germany in First Match of Bilateral Series

Technology Realted Stories

TechnologyCzech antitrust agency denies Westinghouse, EDF complaints over KHNP's nuclear deal

TechnologyNow filter chats with customised lists on WhatsApp

TechnologyGoogle expands split-screen Gemini functionality to more devices

TechnologyBPL Group Chairman T.P.G. Nambiar Passes Away, Top Leaders Express Condolences

TechnologyS. Korea conducts 1st interagency field training against space debris risks