cyber Breach

Telstra

May 11, 2023 1 min read
Telstra

A flaw in medical software used by more than 40,000 Australian health specialists and distributed by Telstra has potentially exposed Australians' medical information to hackers.

Hackers have been logging into practitioners' computers and servers to carry out illegal activities.

The flaw in the "secure" messaging software is specifically leaving computers with remote desktop software installed wide open because it creates a separate username with a static default password that will allow for an easy intrusion.

Source: https://www.smh.com.au/technology/medical-records-exposed-by-flaw-in-telstra-health-argus-software-20180322-p4z5ko.html

TPRM report: https://scoringcyber.rankiteo.com/company/telstra

"id": "tel141210622",
"linkid": "telstra",
"type": "Vulnerability",
"date": "03/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 'More than 40,000 Australian '
                                              'health specialists',
                        'industry': 'Telecommunications',
                        'location': 'Australia',
                        'name': 'Telstra',
                        'type': 'Company'}],
 'attack_vector': 'Exploitation of Default Credentials',
 'data_breach': {'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Medical information'},
 'description': 'A flaw in medical software used by more than 40,000 '
                'Australian health specialists and distributed by Telstra has '
                "potentially exposed Australians' medical information to "
                "hackers. Hackers have been logging into practitioners' "
                'computers and servers to carry out illegal activities. The '
                "flaw in the 'secure' messaging software is specifically "
                'leaving computers with remote desktop software installed wide '
                'open because it creates a separate username with a static '
                'default password that will allow for an easy intrusion.',
 'impact': {'data_compromised': 'Medical information',
            'systems_affected': 'Computers with remote desktop software'},
 'initial_access_broker': {'entry_point': 'Remote desktop software'},
 'motivation': 'Illegal activities',
 'post_incident_analysis': {'root_causes': 'Static default password in remote '
                                           'desktop software'},
 'threat_actor': 'Hackers',
 'title': "Medical Software Flaw Exposes Australians' Medical Information",
 'type': 'Data Breach',
 'vulnerability_exploited': 'Static default password in remote desktop '
                            'software'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.