Data on 750,000 patients stolen in France

Updated on 20/11/2024

20/11/2024

On November 19th, information on 750,000 patients from several French hospitals belonging to the Aléo Santé organisation was published on Dark Web forums. The attack was carried out by the well-known threat actor ‘nears’ (formerly known as near2tlg) who claimed to have obtained the data of 1.5 million patients through a security breach in Mediboard.

Mediboard is a healthcare management software from the company Software Medical Group that is used in hospitals in several EU countries. The company has denied in a statement that its software has been compromised, but has confirmed that the data breach was carried out via a compromised privileged account.

As of press time, there are no known buyers of the stolen data. However, due to the nature of the data, there is a risk to these users that their data could be used in phishing attacks or other scams.

References

20/11/2024

bleepingcomputer.com

Cyberattack at French hospital exposes health data of 750,000 patients
21/11/2024

bitlifemedia.com

Un ciberataque en un hospital francés deja al descubierto los datos de 750.000 pacientes
21/11/2024

securityaffairs.com

Threat actor sells data of over 750,000 patients from a French hospital
21/11/2024

techmonitor.ai

French hospital hit by massive data breach, over 750,000 patients impacted

Etiquetas