Maida.health, a Brazilian health technology company, allegedly suffered a massive data breach involving the leak of 2.3TB of sensitive medical and personal data belonging to Brazil’s military police. The exposed records include diagnostic reports (cardiology, neurology, gynecology), identification cards, healthcare contracts, patient details, and administrative protocols, covering both personnel and their families. A threat actor advertised the stolen data on an underground forum, raising concerns over identity theft, medical fraud, and unauthorized access to highly confidential health records. The breach poses severe risks, as criminals could exploit the data to impersonate victims for medical services, obtain prescription drugs fraudulently, or conduct targeted scams. While the authenticity of the leak remains unverified, the potential scale affecting a military-linked healthcare system heightens national security and privacy concerns. Brazil has faced repeated large-scale data exposures, including a 2024 incident where 223 million citizens' records (exceeding the country’s population) were left unprotected. The healthcare sector’s vulnerability to such attacks underscores its status as a prime target for cybercriminals due to the high-value sensitive data it handles.
TPRM report: https://www.rankiteo.com/company/maidahealth
"id": "mai5202252092425",
"linkid": "maidahealth",
"type": "Breach",
"date": "6/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': 'Brazilian military police '
'personnel and their families '
'(scale unclear; 2.3TB of data '
'leaked)',
'industry': 'healthcare',
'location': 'Brazil',
'name': 'Maida.health',
'type': 'health technology company'},
{'industry': 'public safety/defense',
'location': 'Brazil',
'name': 'Brazilian Military Police',
'type': 'government/military organization'}],
'data_breach': {'data_exfiltration': 'alleged (2.3TB advertised on '
'underground forum)',
'personally_identifiable_information': ['names',
'ID card details',
'medical history',
'family member data'],
'sensitivity_of_data': 'extremely high (health + PII + '
'military personnel)',
'type_of_data_compromised': ['medical records',
'personal identification (ID '
'cards)',
'healthcare contracts',
'diagnostic/treatment data',
'administrative documents',
'regulatory certificates']},
'description': 'Cybercriminals advertised stolen records from Maida.health, a '
'Brazilian health technology company, including 2.3TB of data '
'concerning the country’s military police. The leaked data '
'allegedly includes diagnostics, ID cards, healthcare '
'contracts, and medical reports across specialties like '
'cardiology, neurology, and gynecology. The breach poses risks '
'of identity theft and medical fraud, though the authenticity '
'of the claims remains unverified as of now.',
'impact': {'brand_reputation_impact': 'high (potential erosion of trust in '
'healthcare data security)',
'data_compromised': ['health records',
'identification cards',
'healthcare contracts',
'medical reports (cardiology, neurology, '
'gynecology, etc.)',
'patient details',
'invoices for medical care',
'administrative protocols',
'regulatory certificates',
'clinical patient data'],
'identity_theft_risk': 'high'},
'initial_access_broker': {'data_sold_on_dark_web': 'alleged (advertised on '
'underground forum)',
'high_value_targets': ['military police health data',
'sensitive medical records']},
'investigation_status': 'unverified (sample data posted but not analyzed by '
'security researchers)',
'motivation': ['financial gain',
'data monetization (sale on dark web)',
'potential identity theft/fraud'],
'references': [{'source': 'Cybernews'}],
'threat_actor': {'type': 'unknown (advertised data on underground forum)'},
'title': 'Maida.health Data Breach: Alleged Leak of 2.3TB of Brazilian '
'Military Police Medical and Personal Data',
'type': ['data breach', 'unauthorized data exposure']}