Philippines health insurer hacked: What we know
/ Photo: JAM STA ROSA - AFP
-
Smith laments lack of runs after first Ashes home Test loss for 15 years
-
Russian barrage on Kyiv kills one, leaves hundreds of thousands without power
-
Stokes, Smith agree two-day Tests not a good look after MCG carnage
-
Stokes hails under-fire England's courage in 'really special' Test win
-
What they said as England win 4th Ashes Test - reaction
-
Hong Kongers bid farewell to 'king of umbrellas'
-
England snap 15-year losing streak to win chaotic 4th Ashes Test
-
Thailand and Cambodia agree to 'immediate' ceasefire
-
Closing 10-0 run lifts Bulls over 76ers while Pistons fall
-
England 77-2 at tea, need 98 more to win chaotic 4th Ashes Test
-
Somalia, African nations denounce Israeli recognition of Somaliland
-
England need 175 to win chaotic 4th Ashes Test
-
Cricket Australia boss says short Tests 'bad for business' after MCG carnage
-
Russia lashes out at Zelensky ahead of new Trump talks on Ukraine plan
-
Six Australia wickets fall as England fight back in 4th Ashes Test
-
Man Utd made to 'suffer' for Newcastle win, says Amorim
-
Morocco made to wait for Cup of Nations knockout place after Egypt advance
-
Key NFL week has playoff spots, byes and seeds at stake
-
Morocco forced to wait for AFCON knockout place after Mali draw
-
Dorgu delivers winner for depleted Man Utd against Newcastle
-
US stocks edge lower from records as precious metals surge
-
Somalia denounces Israeli recognition of Somaliland
-
The Cure guitarist and keyboard player Perry Bamonte dies aged 65
-
Draper to miss Australian Open
-
Police arrest suspect after man stabs 3 women in Paris metro
-
Former Montpellier coach Gasset dies at 72
-
Trump's Christmas gospel: bombs, blessings and blame
-
Russia lashes out at Zelensky ahead of new Trump meeting on Ukraine plan
-
Salah helps Egypt beat South Africa and book last-16 place
-
Australia's Ikitau facing lengthy lay-off after shoulder injury
-
Another 1,100 refugees cross into Mauritania from Mali: UN
-
Guardiola proud of Man City players' response to weighty issues
-
Deadly blast hits mosque in Alawite area of Syria's Homs
-
The Jukebox Man on song as Redknapp records 'dream' King George win
-
Liverpool boss Slot says Ekitike reaping rewards for greater physicality
-
Judge jails ex-Malaysian PM Najib for 15 more years after new graft conviction
-
Musona rescues Zimbabwe in AFCON draw with Angola
-
Zelensky to meet Trump in Florida on Sunday
-
'Personality' the key for Celtic boss Nancy when it comes to new signings
-
Arteta eager to avoid repeat of Rice red card against Brighton
-
Nigeria signals more strikes likely in 'joint' US operations
-
Malaysia's former PM Najib convicted in 1MDB graft trial
-
Elusive wild cat feared extinct rediscovered in Thailand
-
Japan govt approves record budget, including for defence
-
Seoul to ease access to North Korean newspaper
-
History-maker Tongue wants more of the same from England attack
-
Australia lead England by 46 after 20 wickets fall on crazy day at MCG
-
Asia markets edge up as precious metals surge
-
Twenty wickets fall on day one as Australia gain edge in 4th Ashes Test
-
'No winner': Kosovo snap poll unlikely to end damaging deadlock
NYSE - LSE
Philippines health insurer hacked: What we know
Hackers have stolen the personal data of potentially millions of people from the Philippines's national health insurer, which has urged members to change their passwords after the "staggering" cyberattack.
The hackers have started releasing files including confidential memos from the stolen data to pressure the government into paying a $300,000 ransom.
Here is what we know so far about the attack, which was discovered by the Philippine Health Insurance Corporation (PhilHealth) on September 22:
What did the hackers steal?
PhilHealth and the government have yet to say exactly how many people have been impacted, but the insurer warned members in a notice that data such as addresses, phone numbers and insurance IDs was compromised.
As of June 30, according to its website, PhilHealth had more than 59 million direct and indirect contributors -- more than half the population of the Philippines.
PhilHealth asked members to monitor credit card transactions and change passwords, especially for financial services.
Separately, employee information was also stolen from the targeted computers.
The hackers released some of the data on the dark web, showing health memos and other information that a top government official described as confidential.
An investigation into the scale of the attack is ongoing, but the National Privacy Commission has described the amount of data stolen as "staggering".
Who are the hackers, and what do they want?
The Philippine government has referred to the attackers as the Medusa group, who have demanded $300,000 to restore access to PhilHealth computers and delete the stolen data.
MedusaLocker, first detected in late 2019, has been used to mainly target healthcare organisations and its creators took particular advantage of the emergency situation during the Covid-19 pandemic, according to a US government report.
The ransomware has been sold to criminal actors, and a US government cybersecurity advisory said its creator receives a cut of any ransom.
It was not clear if the Medusa group identified by the Philippines government is the creator of or an entity that purchased MedusaLocker.
How did they get the data?
On September 22, PhilHealth staff were unable to access a number of computers, which displayed a message saying hackers had locked the machines and encrypted the data.
The insurer shut down the affected systems to try and stop the attack from spreading, slowing or entirely shutting down some online services for days.
The government has so far not said exactly how hackers got access to the computers.
But in interviews with local media last week, senior PhilHealth official Israel Pargas said the insurer did not have an antivirus software at the time of the attack.
How has the government responded?
With a blunt 'No'. The Philippines does not pay ransom in any criminal cases, including cyberattacks, officials have said.
However, with hackers releasing more data from the stolen files, calls have grown for the government to conduct an audit of its cyber defences.
The National Privacy Commission said Saturday it has started an investigation into any potential lapses and data law violations by PhilHealth.
The NPC said its analysis of 734 GB of stolen data revealed "sensitive personal data", and warned the public that anyone who downloads this information could face criminal charges.
T.Ward--AMWN
