Ayush Jharkhand government suffered from a data breach incident that exposed 320,000 Patient Records.
500 login credentials, along with numerous cleartext passwords.
737 users of the contact form provided their contact details.
When the data were examined, it became clear that they had been obtained from the bitsphere.in-developed servers of ayush.jharkhand.gov.in.
By comparing chatbot and blog post data given by the threat actor with information that was made available to the public on the website, this information was identified as coming from ayush Jharkhand.
TPRM report: https://scoringcyber.rankiteo.com/company/government-of-jharkhand-administration
"id": "gov111210923",
"linkid": "government-of-jharkhand-administration",
"type": "Breach",
"date": "08/2023",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare',
'location': 'Jharkhand, India',
'name': 'Ayush Jharkhand Government',
'type': 'Government'}],
'data_breach': {'data_exfiltration': True,
'number_of_records_exposed': [320000, 500, 737],
'type_of_data_compromised': ['Patient Records',
'Login Credentials',
'Cleartext Passwords',
'Contact Details']},
'description': 'Ayush Jharkhand government suffered from a data breach '
'incident that exposed 320,000 Patient Records, 500 login '
'credentials, along with numerous cleartext passwords, and 737 '
'users of the contact form provided their contact details.',
'impact': {'data_compromised': ['Patient Records',
'Login Credentials',
'Cleartext Passwords',
'Contact Details'],
'systems_affected': ['ayush.jharkhand.gov.in servers']},
'title': 'Ayush Jharkhand Government Data Breach',
'type': 'Data Breach'}