Stolen data
traced to healthcare databases
PARCA eNews – July 14, 2016
– As many as five databases that have been offered for sale on the dark web
have been traced to healthcare organizations according to Databreaches.net*. Although the organizations whose data have been listed for sale have
not come forward and confirmed that they are the victims, investigators at have
traced at least one database to a Midwest orthopedic clinic and another to a
Georgia clinic.
The seller is a hacker,
calling himself, “TheDarkOverlord,” who provided descriptions of the databases
and samples, but did not name the victim organizations. In a number of
encrypted chats with the hacker since then, DataBreaches.net says it obtained
additional information about the identity of the entity and emails sent to
them. The victims of the breaches however have not confirmed the emails.
The blog site reported that another of
the largest databases from the initial set of three that were posted on
TheRealDeal dark net marketplace contained 397,000 patients’ records from an Atlanta,
Georgia-based orthopedic clinic. While the clinic has not confirmed
the breach, the CEO of the clinic did confirm with Databreaches that an email
had been received from a hacker claiming the data had been stolen.
The largest database on the
marketplace is believed to be from a health insurer from which 9.3 million records were stolen probably not directly from the insurer but from a vendor or
business associate, according to the Databreaches.net.
* Editor’s note: I was unable to confirm the
reliability of these sources due to the nature of their enterprises and unwillingness
on my part to access the dark web.
No comments:
Post a Comment