Dutch health ministry's COVID-19 systems were hit by a targeted cyberattack.
Dutch police arrested two individuals for allegedly selling data, after an investigation by RTL Nieuws reporter Daniel Verlaan who discovered ads for Dutch citizen data online, advertised on instant messaging apps like Telegram, Snapchat, and Wickr.
The attack compromised the Dutch Municipal Health Service (GGD) — namely CoronIT, which contains details about Dutch citizens who took a COVID-19 test, and HPzone Light, one of the DDG's contact-tracing systems.
The data had been sold online for months for prices ranging from €30 to €50 per person and they received details such as home addresses, emails, telephone numbers, dates of birth, and a person's BSN identifier (Dutch social security number).
They immediately started an investigation and arrested two suspects within 24 hours of the complaint.
Source: https://www.zdnet.com/article/dutch-covid-19-patient-data-sold-on-the-criminal-underground/
"id": "DUT1626522",
"linkid": "dutch-health-bv",
"type": "Cyber Attack",
"date": "01/2021",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"