Philippines health insurer hacked: What we know
/ Photo: JAM STA ROSA - AFP
-
NATO hatches deal on higher spending to keep Trump happy
-
Eurovision stage a dynamic 3D 'playground': producer
-
Cruise unleashes 'Mission: Impossible' juggernaut at Cannes
-
Suaalii in race to be fit for Lions Tests after fracturing jaw
-
Pacers oust top-seeded Cavs, Nuggets on brink
-
Sony girds for US tariffs after record annual net profit
-
China, US slash sweeping tariffs in trade war climbdown
-
Human Rights Watch warns of migrant worker deaths in 2034 World Cup host Saudi Arabia
-
Sony logs 18% annual net profit jump, forecast cautious
-
China, US to lift sweeping tariffs in trade war climbdown
-
Asian markets swing as China-US trade euphoria fades
-
Australian seaweed farm tackles burps to help climate
-
Judgment day in EU chief's Covid vaccine texts case
-
Trump set to meet Syrian leader ahead of Qatar visit
-
Misinformation clouds Sean Combs's sex trafficking trial
-
'Panic and paralysis': US firms fret despite China tariff reprieve
-
Menendez brothers resentenced, parole now possible
-
'Humiliated': Combs's ex Cassie gives searing testimony of abuse
-
Latin America mourns world's 'poorest president' Mujica, dead at 89
-
Masters champion McIlroy to headline Australian Open
-
Sean Combs's ex Cassie says he coerced her into 'disgusting' sex ordeals
-
McIlroy, Scheffler and Schauffele together for rainy PGA battle
-
Uruguay's Mujica, world's 'poorest president,' dies aged 89
-
Lift-off at Eurovision as first qualifiers revealed
-
Forest striker Awoniyi placed in induced coma after surgery: reports
-
'Kramer vs Kramer' director Robert Benton dies: representative
-
Tatum suffered ruptured right Achilles in playoff defeat: Celtics
-
US stocks mostly rise on better inflation data while dollar retreats
-
Winning farewell for Orlando Pirates' Spanish coach Riveiro
-
Lift-off at Eurovision as first semi-final takes flight
-
UN relief chief urges action 'to prevent genocide' in Gaza
-
Baseball pariahs Rose, Jackson eligible for Hall of Fame after league ruling
-
Scheffler excited for 1-2-3 group with McIlroy, Schauffele
-
Sean Combs's ex Cassie says he forced her into 'disgusting' sex ordeals
-
Uruguay's 'poorest president' Mujica dies aged 89
-
Senior UN official urges action 'to prevent genocide' in Gaza
-
'Kramer vs Kramer' director Robert Benton dies: report
-
Sinner moves through gears to reach Italian Open quarters
-
Massages, chefs and trainers: Airbnb adds in-home services
-
Republicans eye key votes on Trump tax cuts mega-bill
-
Brazil legend Marta returns for Japan friendlies
-
McIlroy, Scheffler and Schauffele together to start PGA
-
Jose Mujica: Uruguay's tractor-driving leftist icon
-
Uruguay's ex-president Mujica dead at 89
-
It's showtime at Eurovision as semis begin
-
DeChambeau says '24 PGA near miss a major confidence boost
-
Gaza, Trump dominate politically charged Cannes Festival opening
-
Carney says new govt will 'relentlessly' protect Canada sovereignty
-
Gaza rescuers says Israeli strikes kill 28 near hospital
-
Schauffele still has something to prove after two major wins
NYSE - LSE
Philippines health insurer hacked: What we know
Hackers have stolen the personal data of potentially millions of people from the Philippines's national health insurer, which has urged members to change their passwords after the "staggering" cyberattack.
The hackers have started releasing files including confidential memos from the stolen data to pressure the government into paying a $300,000 ransom.
Here is what we know so far about the attack, which was discovered by the Philippine Health Insurance Corporation (PhilHealth) on September 22:
What did the hackers steal?
PhilHealth and the government have yet to say exactly how many people have been impacted, but the insurer warned members in a notice that data such as addresses, phone numbers and insurance IDs was compromised.
As of June 30, according to its website, PhilHealth had more than 59 million direct and indirect contributors -- more than half the population of the Philippines.
PhilHealth asked members to monitor credit card transactions and change passwords, especially for financial services.
Separately, employee information was also stolen from the targeted computers.
The hackers released some of the data on the dark web, showing health memos and other information that a top government official described as confidential.
An investigation into the scale of the attack is ongoing, but the National Privacy Commission has described the amount of data stolen as "staggering".
Who are the hackers, and what do they want?
The Philippine government has referred to the attackers as the Medusa group, who have demanded $300,000 to restore access to PhilHealth computers and delete the stolen data.
MedusaLocker, first detected in late 2019, has been used to mainly target healthcare organisations and its creators took particular advantage of the emergency situation during the Covid-19 pandemic, according to a US government report.
The ransomware has been sold to criminal actors, and a US government cybersecurity advisory said its creator receives a cut of any ransom.
It was not clear if the Medusa group identified by the Philippines government is the creator of or an entity that purchased MedusaLocker.
How did they get the data?
On September 22, PhilHealth staff were unable to access a number of computers, which displayed a message saying hackers had locked the machines and encrypted the data.
The insurer shut down the affected systems to try and stop the attack from spreading, slowing or entirely shutting down some online services for days.
The government has so far not said exactly how hackers got access to the computers.
But in interviews with local media last week, senior PhilHealth official Israel Pargas said the insurer did not have an antivirus software at the time of the attack.
How has the government responded?
With a blunt 'No'. The Philippines does not pay ransom in any criminal cases, including cyberattacks, officials have said.
However, with hackers releasing more data from the stolen files, calls have grown for the government to conduct an audit of its cyber defences.
The National Privacy Commission said Saturday it has started an investigation into any potential lapses and data law violations by PhilHealth.
The NPC said its analysis of 734 GB of stolen data revealed "sensitive personal data", and warned the public that anyone who downloads this information could face criminal charges.
T.Ward--AMWN
