The Indonesian Health Ministry confirmed it was investigating the incident of data breach of millions of patients on their servers that were sold on dark web forums.
“We are assessing the problems that occurred and (currently) evaluating our systems,” Chief Digital Transformation Officer at the Ministry of Health Setiaji noted in a text message to ANTARA here on Thursday.
When contacted separately, Health Ministry’s spokesperson, Siti Nadia Tarmizi, remarked that the incident was still being probed.
Data of no less than millions of patients in various hospitals in Indonesia were allegedly breached and traded on Raidforums, a dark web forum.
Based on some information, the leaked document of 720GB was claimed to be medical information of Indonesian patients. An uploader gave away six million data samples, including full names, hospitals, patient photos, COVID-19 test results, and X-Ray scans.
The document also contained patient complaints, BPJS (healthcare) referral letters, radiology reports, laboratory test results, and approval to undergo isolation due to COVID-19.
Hackers claimed this data came from the Indonesian Ministry of Health’s centralized server on December 28, 2021.
Source: Antara News