Balita.org: Your Premier Source for Comprehensive Philippines News and Insights! We bring you the latest news, stories, and updates on a wide range of topics, including politics, culture, economy, and more. Stay tuned to know everything you wish about your favorite stars 24/7.

Contacts

  • Owner: SNOWLAND s.r.o.
  • Registration certificate 06691200
  • 16200, Na okraji 381/41, Veleslavín, 162 00 Praha 6
  • Czech Republic

PhilHealth hacked: What we know

Hackers have stolen the personal data of potentially millions of people from the Philippines’s national health insurer, which has urged members to change their passwords after the “staggering” cyberattack.

The hackers have started releasing files including confidential memos from the stolen data to pressure the government into paying a $300,000 ransom.

Here is what we know so far about the attack, which was discovered by the Philippine Health Insurance Corporation (PhilHealth) on September 22:

What did the hackers steal?

PhilHealth and the government have yet to say exactly how many people have been impacted, but the insurer warned members in a notice that data such as addresses, phone numbers and insurance IDs was compromised.

As of June 30, according to its website, PhilHealth had more than 59 million direct and indirect contributors — more than half the population of the Philippines.

PhilHealth asked members to monitor credit card transactions and change passwords, especially for financial services.

Separately, employee information was also stolen from the targeted computers.

The hackers released some of the data on the dark web, showing health memos and other information that a top government official described as confidential.

An investigation into the scale of the attack is ongoing, but the National Privacy Commission has described the amount of data stolen as “staggering”.

Who are the hackers, and what do they want?

The Philippine government has referred to the attackers as the Medusa group, who have demanded $300,000 to restore access to PhilHealth computers and delete the stolen data.

MedusaLocker, first detected in late 2019, has been used to mainly target healthcare organisations and its creators took particular advantage of the emergency situation during the Covid-19 pandemic, according to a US government report.

The ransomware has been sold to criminal actors, and a US government cybersecurity advisory said its creator receives a cut of any ransom.

It was not clear if the Medusa group identified by the Philippines government is the creator of or an entity that purchased MedusaLocker.

How did they get the data?

On September 22, PhilHealth staff were

Read more on manilastandard.net
Prev Post
Business groups oppose increase in SEC charges, ask for ARTA review

Related News

Latest Posts
Seoul Halloween crowd crush one year on: What we know
  • By philstar.com

Seoul Halloween crowd crush one year on: What we know

PhilHealth says data of 13m to 20m members now on dark web
  • By manilastandard.net

PhilHealth says data of 13m to 20m members now on dark web

PhilHealth launches mental health package
  • By manilastandard.net

PhilHealth launches mental health package

PhilHealth: 13 million members affected by data breach
  • By philstar.com

PhilHealth: 13 million members affected by data breach

PhilHealth to transfer erring execs
  • By manilastandard.net

PhilHealth to transfer erring execs

What we know about the hostages Hamas is holding
  • By philstar.com

What we know about the hostages Hamas is holding

DMCA