A hacker who stole patient data from cosmetic surgery threatens to 'publish preoperative photos of patients'

A chain of cosmetic surgery with many celebrity customers has been threatened with 'publishing pre- and post-surgery photos of patients' after a large amount of data was stolen by a group of hackers attacking hospitals as their main target It is reported that it is.

UK: Transform Hospital Group falls prey to ransomware attack


Hackers threaten to post'before and after' pictures of cosmetic surgery patients

According to media reports, it is the hacker groups known as 'REvil' and 'Sodinokibi' that are attacking the Transform Hospital Group , a major British cosmetic surgery clinic chain. REvil has a criminal record that threatened to steal data from hospitals.

More than 400 medical institutions suffered ransomware damage all at once --GIGAZINE

REvil has posted the following screenshot on a leak site on the dark web to show that he has accessed the Transform Hospital Group data. According to DataBreaches.net, a security-related news site, it can be estimated that the data was stolen around December 6th.

REvil said it had stolen about 600GB of 'important confidential documents, customer personal data, and customer photos' and threatened to publish batches of files little by little, already with a total of 70GB of patient personal data folders and documents. Will be released.

Patients who have visited the Transform Hospital Group include famous singers, actresses, and talents. Simon Hales, who had undergone chest reduction surgery to treat gynecomastia , told the BBC that he had received an email from the hospital informing him of 'important data security issues.' I don't know that I had surgery, so I'm worried that the pre-surgery photos will be released. '

A spokeswoman for the Transform Hospital Group said, 'The patient's credit card information has not been compromised, but (at the time of writing) I know that some of the patient's personal information may have been accessed. We notify all patients of this event and provide them with up-to-date information on a regular basis when the situation becomes clear, and we also ensure the system and scale the incident. We are conducting a full-scale investigation. We are working with national cybersecurity experts and police to resolve the situation as soon as possible. '

in Security, Posted by log1i_yk