The CNIL investigates after the leak of hundreds of thousands of French medical data

A file, which circulates on forums, includes the medical data of nearly 500,000 people in France.

The CNIL launched an investigation on Wednesday aimed at determining the shortcomings responsible for the leak of medical data which affected nearly 500,000 people in France. Louis Dutheillet de Lamothe, secretary general of the commission, judges that if the leak was verified, the case would present “a particular gravity»With regard to the number of victims and the sensitivity of the medical information disseminated.

At the same time, the National Information Systems Security Agency (Anssi) told AFP that it had identified the “originOf the health data leak, and having reported it to the Ministry of Health in November 2020.

491,840 hospital data files

La reported on February 19 that it had discovered a document revealing this vast leak, on a darkweb forum. Their specialists indicated that they discovered the posting of “491,840 hospital data files“. The file mentions the identity, email address, number and health data of hundreds of thousands of patients, such as information on the blood group, the attending physician or the mutual, or comments on the condition of the patient. health (including a possible pregnancy), drug treatments, or pathologies (especially HIV).

The data was released for free on February 12. CybelAngel press release

According to daily Release, the data would come from around thirty medical biology laboratories, located mainly in the north-western quarter of France, using the same software for entering medico-administrative information. They would correspond to samples taken between 2015 and October 2020, a period which coincides for the laboratories questioned with the use of the same software for entering medico-administrative information published by the Dedalus group. “We have no certainty as to the fact that it is only Dedalus France software which is at issue in this case”, reacted to AFP the deputy managing director Didier Neyrat. “We have set up a crisis unit because we take this seriously and we will work in partnership with our customers to understand what happened”, he added.

Expensive health data

Two days after its gracious posting, the file was picked up several times on other forums. “Some even took the initiative to put it back on sale when it was initially free», Underlines David Sygula, analyst in cybersecurity present on the forums. “The resellers were also quickly caught up by the moderators», The expert quipped.

On these platforms, our health data is worth a fortune in cryptocurrency. “If it had not been given, [le fichier] could have sold between 2000 and 3000 euros, says David Sygula. When data is published free of charge, it is often that it has already been used. They are also sometimes militant hackers. ”

Another document containing the contact details of 50,000 French hospital employees was also discovered by the teams.

Announcement posted on February 4 on a cybercriminal forum. Screenshot

Its value could reach 2000 euros, an uncertain amount, the company not having been able to have access to all the data. It is also not possible to know if this data has been sold, nor to how many entities.

This frequent sale of health data is not unrelated to the increase in attacks against hospital services. The latest examples being the hospitals of Dax and Landes hit in early February by “ransomware».

Today a “around twenty»Actors sell and buy health data. And in the face of growing demand, “cybercriminals scramble to provide this data ”.

SEE ALSO – Cyber ​​attack: “Today, hospitals are targets”, deplores Frédéric Valletoux

Related Posts

Leak of 530 million accounts: Facebook denounces “malicious actors”

Comments Off on Leak of 530 million accounts: Facebook denounces “malicious actors”

What are the French plans for 2019?

Comments Off on What are the French plans for 2019?

Leak of 530 million accounts: Facebook denounces “malicious actors”

Comments Off on Leak of 530 million accounts: Facebook denounces “malicious actors”

What brands do the French recommend the most to those around them?

Comments Off on What brands do the French recommend the most to those around them?

Fuel: why the E85 is attracting more and more French people

Comments Off on Fuel: why the E85 is attracting more and more French people

Foie gras, champagne, chocolate… What the French will taste at Christmas

Comments Off on Foie gras, champagne, chocolate… What the French will taste at Christmas

Cybersecurity: The Bureau des Légendes helps the government raise awareness among the French

Comments Off on Cybersecurity: The Bureau des Légendes helps the government raise awareness among the French

Mass tourism: a majority of French people ready to give up certain destinations

Comments Off on Mass tourism: a majority of French people ready to give up certain destinations

The questions that arise after the fraudulent Polish meat scandal

Comments Off on The questions that arise after the fraudulent Polish meat scandal

“It is abnormal that only 1% of French law is available online”

Comments Off on “It is abnormal that only 1% of French law is available online”

The 500,000 medical files found online come from laboratories in Brittany, Normandy and Center-Val-de-Loire

Comments Off on The 500,000 medical files found online come from laboratories in Brittany, Normandy and Center-Val-de-Loire

“It is abnormal that only 1% of French law is available online”

Comments Off on “It is abnormal that only 1% of French law is available online”

Create Account



Log In Your Account