Brazil's Healthcare Sector Hit by Major Cyberattack: KillSec Exposes 94,818 Sensitive Files
Brazil's healthcare sector has been hit by a significant cyberattack. KillSec Ransomware, a notorious cybercriminal group, has claimed responsibility for breaching MedicSolution, a prominent software solutions provider for the industry. The attack, the first notable supply chain incident affecting Brazilian healthcare, has exposed over 94,818 sensitive files.
The stolen data, totalling 34 GB, includes medical evaluations, lab results, X-rays, unredacted patient pictures, and records related to minors. This sensitive information, classified as 'sensitive personal data' under Brazil's Lei Geral de Proteção de Dados (LGPD), has been threatened for public leak by the KillSec group unless prompt negotiations occur.
The root cause of the breach was traced back to an insecure AWS S3 bucket, leaving the data exposed for 'several months'. This incident follows KillSec's recent attacks on healthcare institutions in Colombia, Peru, and the United States, as well as a US healthcare provider and a European financial institution. The Autoridade Nacional de Proteção de Dados (ANPD), Brazil's main data protection regulator, is now investigating the breach and may impose sanctions.
The MedicSolution breach is a stark reminder of the importance of robust data protection measures in the healthcare sector. With sensitive patient information at risk, swift action is needed to prevent further harm. The ANPD's investigation will be crucial in understanding the full extent of the breach and ensuring accountability.
Read also:
- Vaccinations Explained: An Overview of Immunization Processes
- Health care professionals targeted in a shooting incidents, a pattern of hostile actions against health workers continues to unfold, with many observing this trend as unremarkable.
- Arthritis Prevention: Lifestyle Tips to Protect Joints
- U.S. Medical Workers Urge End to Israeli Military Support After Witnessing Gaza Devastation
