BITMARCK

A cyber breach affected the business Bitmarck, which offers IT services in particular for statutory health insurance firms.

It appears that data from the Jira project management system and business databases was obtained by cybercriminals.

The malevolent party selling the data on the dark web claims to have access to password hashes, customer personal information, VIP customer information, executive personal information, user and employee information, as well as user and staff information.

There are no demands for ransom, and the attackers have not been contacted.

Bitmarck started taking action right away in accordance with the BSI's recommendations as well as those of internal and outside security consultants.

Source: https://www.heise.de/news/Cyber-Vorfall-Datenleck-bei-GKV-IT-Dienstleister-Bitmarck-7468476.html

TPRM report: https://scoringcyber.rankiteo.com/company/bitmarck

"id": "bit41314823",
"linkid": "bitmarck",
"type": "Breach",
"date": "01/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"

{'affected_entities': [{'industry': 'IT Services',
                        'name': 'Bitmarck',
                        'type': 'Company'}],
 'data_breach': {'data_exfiltration': True,
                 'personally_identifiable_information': True,
                 'type_of_data_compromised': ['password hashes',
                                              'customer personal information',
                                              'VIP customer information',
                                              'executive personal information',
                                              'user and employee information',
                                              'user and staff information']},
 'description': 'A cyber breach affected Bitmarck, which offers IT services '
                'particularly for statutory health insurance firms. Data from '
                'the Jira project management system and business databases was '
                'obtained by cybercriminals. The malevolent party selling the '
                'data on the dark web claims to have access to password '
                'hashes, customer personal information, VIP customer '
                'information, executive personal information, user and '
                'employee information, as well as user and staff information. '
                'There are no demands for ransom, and the attackers have not '
                'been contacted. Bitmarck started taking action right away in '
                "accordance with the BSI's recommendations as well as those of "
                'internal and outside security consultants.',
 'impact': {'data_compromised': ['password hashes',
                                 'customer personal information',
                                 'VIP customer information',
                                 'executive personal information',
                                 'user and employee information',
                                 'user and staff information'],
            'systems_affected': ['Jira project management system',
                                 'business databases']},
 'initial_access_broker': {'data_sold_on_dark_web': True},
 'references': [{'source': 'Cyber Incident Description'}],
 'response': {'incident_response_plan_activated': True,
              'third_party_assistance': True},
 'title': 'Cyber Breach at Bitmarck',
 'type': 'Data Breach'}