Hackers had accessed the personal data of 80,000 Covid-19 patients in New Delhi stored on a local government website, in protest at the treatment of beleaguered healthcare workers.
The Kerala Cyber Hackers group broke into the Delhi Government’s Delhi State Health Mission website in less than 10 minutes.
They accessed patient record sheets containing names, ages, addresses, and Covid-19 test results.
There were sensitive data stored in these servers.
TPRM report: https://scoringcyber.rankiteo.com/company/national-health-mission
"id": "nat192713123",
"linkid": "national-health-mission",
"type": "Data Leak",
"date": "07/2020",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': '80,000 Covid-19 patients',
'industry': 'Healthcare',
'location': 'New Delhi',
'name': 'Delhi Government’s Delhi State Health Mission',
'type': 'Government'}],
'attack_vector': 'Website Intrusion',
'data_breach': {'number_of_records_exposed': '80,000',
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Ages',
'Addresses',
'Covid-19 test results']},
'description': 'Hackers accessed the personal data of 80,000 Covid-19 '
'patients in New Delhi stored on a local government website, '
'in protest at the treatment of beleaguered healthcare '
'workers.',
'impact': {'data_compromised': 'Patient record sheets containing names, ages, '
'addresses, and Covid-19 test results',
'systems_affected': 'Delhi Government’s Delhi State Health Mission '
'website'},
'initial_access_broker': {'entry_point': 'Delhi State Health Mission website'},
'motivation': 'Protest against the treatment of healthcare workers',
'threat_actor': 'Kerala Cyber Hackers group',
'title': 'Data Breach of Covid-19 Patient Data in New Delhi',
'type': 'Data Breach'}