Just in:
Meta Earth Official Website Launch: The Pioneer Explorer in the Modular Public Blockchain Domain // Near Miss at Kolkata Airport: IndiGo Plane Makes Contact with Stationary Air India Express // AIA Hong Kong Wins More Than 20 Accolades at MPF Ratings MPF Awards, BENCHMARK MPF of The Year Awards and Bloomberg Businessweek Top Fund Awards // U.S. Compliance Takes Center Stage at OKX Following Industry Jitters // Lisboeta Macau’s world first LINE FRIENDS PRESENTS CASA DE AMIGO and BROWN & FRIENDS CAFE & BISTRO has officially opened // Samsung Partners National Heritage Board to Bring a Slice of Singapore’s Cultural Heritage to Samsung The Frame TV // German Job Market Resilience Bodes Well for Economic Recovery // Experience Ultimate Shopping Freedom at 4.4 Shopee Spree: Don’t Worry, Shop Shopee! // Renewables Surge Sets Record, But Global Equity Lags // Arvind Kejriwal Was Used By BJP In 2011 Movement To Take On The Congress // Emirates Post Speeds Up Deliveries for GCC with Special Day // In Lok Sabha Polls In Punjab, AAP Is Advantageously Placed As Against Its Three Rivals // Hullabaloo About Electoral Bonds May End Up As A Whimper Pre And Post Poll // Arvind Kejriwal Gets International Heft Against The Deshi Vishwaguru // Konica Minolta is named ASEAN 2023 Market Leader in Colour Light and Mid Digital Production Printers // AI Boost for Galaxy Devices: Samsung Expands One UI 6.1 Update // Party Nominees Refusing To Contest: Major Perception Threat For BJP // Ajman Celebrates Conclusion of Ramadan Activities with Grand Ceremony // Emirati Aid Reaches Ukraine as Food Shortages Bite // Sunshine’s Debut Features Leave Tech World Scratching Its Head //
HomeWhat's OnMillions of Health Records Reportedly Appear for Sale on Dark Web

Millions of Health Records Reportedly Appear for Sale on Dark Web

Two days after reporting that 655,000 healthcare records were found for sale on the dark web, the site DeepDotWeb said today that another insurance database with at least 9.3 million patient records is being shopped around by an anonymous hacker.

Over the weekend, a hacker using the name “thedarkoverlord” was offering for sale records taken from databases managed by three healthcare organizations in Missouri, Georgia and the Midwest, according to the site. The hacker, who was seeking payment in Bitcoins with a value ranging from around $100,000 to $395,000, reportedly told DeepDotWeb, “There is a lot more to come.”

That same hacker appeared again today on a dark web market with an offer to sell another database with more than 9.3 million patient records for 750 Bitcoins, valued at around $485,000. The hacker’s market listing claimed the plaintext data belonged to “a large insurance healthcare organization in the United States.”

ADVERTISEMENT

‘Very Particular’ Zero-Day Exploit

According to DeepDotWeb, the hacker selling the healthcare data claimed the information was accessed through a zero-day vulnerability in the Remote Desktop Protocol (RDP) used to connect devices across a network. A proprietary protocol developed by Microsoft for Windows-based applications, RDP provides users with a graphical interface for managing computer-to-computer communication.

Speaking with DeepDotWeb via Jabber over the weekend, thedarkoverlord reportedly said he was able to access the healthcare records due to “an exploit in how companies use RDP. So it is a very particular bug. The conditions have to be very precise for it.”

As business records have become increasingly digitized and network-connected, the risks of breaches, thefts and data losses have grown. Healthcare data in particular offers the potential for hackers to profit via ransomware or fraudulent claims.

“[W]e have seen how all kinds of illegal goods are traded through black market digital sites, some on the dark net, taking advantage of the anonymization possibilities given by the technology, and many of them on the open net,” Fernando Ruiz, head of operations for the European Cybercrime Centre, said in this year’s “2016 Data Breach Investigations Report” from Verizon. “There is a clear demand for stolen data and, therefore, there will always be criminals ready to supply and satisfy this demand, especially if we take into account the disproportion between the risk-cost-profit, as data can be easily stolen and transmitted.”

‘Bit of a Data Breach Yard Sale’

A check of some of the information included in the recently hacked healthcare databases appears to be old, although some still appears to be accurate, a security blogger who goes by the name “Dissent” wrote yesterday on DataBreaches.net. The blogger noted she had also contacted “one well-known insurer” to find out whether any of the hacked data came from its systems, but had not yet received a response.

DeepDotWeb reported today that thedarkoverlord said in an encrypted chat that he had tried to contact the hacked healthcare organization but “they declined to respond.” He added that the price of the records was “a modest cost” compared to the damage a large-scale leak could cause, and indicated more hacked data could be expected to appear up for sale.

These latest hacked database reports — while they have yet to be validated — appear to involve attempts to sell large volumes of old information taken in breaches some time ago, Christopher Budd, the global threat communications manager at the security firm Trend Micro, told us today. He pointed to last month’s attempts to sell on the dark web 117 million user e-mails and passwords taken in a data breach at LinkedIn four years ago.

“It’s a bit of a data breach yard sale going on,” he said. Budd noted that while no healthcare organizations have yet confirmed the loss of data being offered for sale recently, the RDP protocol is “certainly a vector we’ve seen people exploit in the past.” For now, however, the only evidence for such a breach is coming from the hacker, so more evidence is needed, he said.

Let’s block ads! (Why?)

ADVERTISEMENT

ADVERTISEMENT
Just in:
Konica Minolta is named ASEAN 2023 Market Leader in Colour Light and Mid Digital Production Printers // Lisboeta Macau’s world first LINE FRIENDS PRESENTS CASA DE AMIGO and BROWN & FRIENDS CAFE & BISTRO has officially opened // Party Nominees Refusing To Contest: Major Perception Threat For BJP // Court Sides with Coinbase on Wallet Service, But Staking Program Remains in Limbo // AI Boost for Galaxy Devices: Samsung Expands One UI 6.1 Update // Hullabaloo About Electoral Bonds May End Up As A Whimper Pre And Post Poll // Meta Earth Official Website Launch: The Pioneer Explorer in the Modular Public Blockchain Domain // Infineon and HD Korea Shipbuilding & Offshore Engineering jointly develop ship electrification technology // Sharpening the Focus: Sharjah Health Department Refines Evaluation Criteria for “Healthy Schools Programme” // U.S. Compliance Takes Center Stage at OKX Following Industry Jitters // Ajman Celebrates Conclusion of Ramadan Activities with Grand Ceremony // In Lok Sabha Polls In Punjab, AAP Is Advantageously Placed As Against Its Three Rivals // German Job Market Resilience Bodes Well for Economic Recovery // No running of govt from jail, says Delhi Lt Governor // Emirates Post Speeds Up Deliveries for GCC with Special Day // Andertoons by Mark Anderson for Thu, 28 Mar 2024 // Samsung Partners National Heritage Board to Bring a Slice of Singapore’s Cultural Heritage to Samsung The Frame TV // Universal Language for Healthcare: General Authority Embraces Global Coding System // Sunshine’s Debut Features Leave Tech World Scratching Its Head // Near Miss at Kolkata Airport: IndiGo Plane Makes Contact with Stationary Air India Express //