The computer accounts of 19 health professionals and the administrative data of more than 500,000 policyholders were stolen, Health Insurance said on Thursday March 17. The day after this announcement, here is what we know about this massive hacking of the Ameli site.
The attack was detected “at the end of last week”, detailed the National Health Insurance Fund (Cnam) in a press release.
The “hacked” policyholders will be contacted in the coming days by the National Health Insurance Fund, which claims to have filed a complaint following this cyberattack.
“Unauthorized persons” connected to the “amelipro accounts” of 19 caregivers whose “e-mail addresses had been compromised”, wrote the Cnam.
No contact or bank details
Contacted by Agence France-Presse (AFP), the institution clarified that the professionals in question are “mainly pharmacists” and explained that the hackers undoubtedly recovered their identifiers and passwords “on the dark web”, which allowed them to directly access or reset the accounts.
Using computer robots, they were then able to “chain” recover identity data (surname, first name, date of birth), Social Security numbers and information on rights (attending doctor, 100% support ) of at least 510,000 policyholders.
On the other hand, the hacked files did not contain any contact details (address, telephone) or bank, nor data on illnesses or the consumption of care, underlines the Cnam, which warned the National Commission for Computing and Liberties (Cnil ) on Wednesday before filing a complaint on Thursday.