The blackhat using the Twitter handle @tdohack3r (TheDarkOverlord) has put yet another database with patient information up for sale. As with previous hacks, the database contains identity information that could be used for identity theft or fraud. It also contains medical insurance account information and codes related to the type of service. According to the...
One of the other up-for-sale health databases that DataBreaches.net reported on on Sunday was a facility in Farmington, Missouri. It was described as a “Healthcare Database (48,000 Patients) from Farmington, Missouri, United States.” Yesterday, after investigating the sample and other information, DataBreaches.net reached out to the Midwest Orthopedic Pain & Spine clinic owned by...
On Sunday, DataBreaches.net reported on healthcare databases that are up for sale on the darknet in the RealDealMarket. The seller is “TheDarkOverlord,” who provided descriptions of the databases and samples, but did not name the victim entities. In a number of encrypted chats with the hacker since then, DataBreaches.net obtained additional information about the identity...
What data security incident currently holds the undesirable status of 2016’s largest incident involving patient data that has been reported to HHS?* There’s a good chance you’ve never heard about it because the company has remained publicly mute. San Jose-based Bizmatics, Inc. designs and markets electronic health record and electronic medical records practice management...
As if yesterday’s news that three databases with 655,000 patients’ records were up for sale on TheRealDeal by “TheDarkOverlord” wasn’t disturbing enough, today they’ve listed a database with 9.3 million records from an unnamed U.S. health insurer. The listing sets a retail price of 750 BTC, which is almost $500,000.00, and the seller describes it...
Yesterday, I reported that three unidentified patient databases had been put up for sale on the darknet on TheRealDeal market. I was subsequently able to have a chat with TheDarkOverlord (the hacker/seller) about the hacks and the refusal of the victims to pay the extortion demands. You can read more of what TheDarkOverlord shared with...
Seen up for sale on a forum (I’m redacting the ads and samples): Healthcare Database (48,000 Patients) from Farmington, Missouri, United States This product is a considerably large database in plaintext from a healthcare organization in Farmington, Missouri, United States. It was retrieved from a Microsoft Access database within their internal network using readily available...
Should you pay a hacker’s ransom?