They concern staff and partners but also users, including their social security number.
The hackers responsible for the cyberattack against the South Francilien Hospital Center (CHSF) in Corbeil-Essonnes on August 21 have carried out their threats. If the hospital did not pay the demanded ransom in due time – first 10 million dollars, today five to ten times less – they would publish a series of misappropriated data. “A first broadcast was orchestrated in the form of a compressed file of 11.7 gigabytes (…) Friday, September 23 at 9:42 a.m. UTC time exactly », confirms Damien Bancal, manager of the Zataz.com site, which lists cyberattacks around the world. The specialist saw the information disseminated by hackers on the darknet but left the general management of the CHSF, which provides health coverage for nearly 700,000 inhabitants of the outer suburbs south of Paris, to confirm their reality. “In view of the first investigations, the data published seems to concern our users, our staff and our partners”, indicates the establishment targeted, this Sunday, in a long press release. Among the user information disseminated is “their Social Security number, their health data such as examination reports and in particular radiology information, analysis laboratories and doctors’ reports”.
But also information on recourse to universal medical coverage (CMU), and an authorization for compulsory internment in a psychiatric service. “Hackers are Swiss Army knives with every blade maliciousinsists Damien Bancal. All this information is bought and resold in order to set up scams for personal training accounts (CPF) or even “president fraud”, where the scammer manages to obtain a bank transfer from an institution by pretending to be his boss or financial manager. »
SEE ALSO – Corbeil-Essonnes Hospital: “Out of the questionto pay a ransom after the hacking, assures François Braun
Observe the greatest caution
On the other hand, at this stage, the stolen data would only be partial. “We were able to observe that the business databases, which include personalized patient files (DPI) and files relating to human resources management, were not compromised.adds the management of the CHSF. The attack seems to have been confined to virtual servers and only part of the storage space, around 10%. »
Read alsoTargeted by hackers, French hospitals sick of their cybersecurity
However, those in charge of the establishment call on those potentially affected by these leaks to observe the greatest caution. “In view of this situation, we recommend that you be particularly vigilant against e-mails, SMS and calls that could seek to take advantage of this data”they warn, asking to verify that the sender is legitimate and related to the subject, and never provide confidential banking information, passwords, etc. “” At first sight, there will be a lot of people to contact in order to alert and protect, confirms Damien Bancal. To this end, the CHSF undertakes “to send individual information to its patients and staff in the coming days”.
