Philippines health insurer hacked: What we know
/ Photo: JAM STA ROSA - AFP
-
Croatia elects president as incumbent looks favourite
-
Ruud wins but Norway crash to Czech Republic at United Cup
-
Plane with 181 on board crashes in South Korea, killing 96
-
Olympic table tennis champ says never 'officially informed' about fines
-
Djokovic plans to keep playing for 'years to come'
-
North Korea calls for 'toughest' US strategy at party meeting
-
Djokovic calls for doping transparency after Sinner, Swiatek cases
-
Bumrah rips out Australia middle order as India fight back in 4th Test
-
Plane with 181 on board crashes in South Korea, killing 85
-
Brunson's 55 points propel Knicks to overtime win over Wizards
-
Drama, dreams: Japan's wildly popular school football breeds future stars
-
Plane with 181 on board crashes in South Korea, killing 47
-
Georgia set to inaugurate disputed president amid political crisis
-
Japan's Wajima craftmakers see hope in disaster-hit region
-
Five events to look out for in 2025
-
Five sports stars to watch in 2025
-
Plane with 181 on board crashes in South Korea, killing 29
-
UNESCO-listed musical instrument stifled in Afghanistan
-
Excited Osaka says 'deep love' of tennis keeps her going
-
Baseball superstar Ohtani expecting first baby
-
For German 'sick leave detective', business is booming
-
Konstas, Khawaja fall as Australia extend lead to 158 over India
-
Impressive Herbert leads Chargers into playoffs, Broncos denied
-
One dead in Ecuador, Peru ports closed amid massive waves
-
NBA hand out suspensions after fracas in Phoenix
-
Atalanta snatch late draw at Lazio to hold Serie A lead
-
Trump sides with Musk in right-wing row over worker visas
-
Suriname rules out state funeral for ex-dictator Bouterse
-
Israeli military says Gaza hospital chief held in raid
-
Alisson tells title-chasing Liverpool to create own history
-
Israel army says ends raid against 'Hamas centre' in north Gaza hospital
-
French skier Sarrazin 'stable' after surgery for crash injuries: federation
-
Jansen admits South Africa face challenge after losing three wickets
-
Israeli military confirms north Gaza hospital chief held in raid
-
Abbas, Shahzad rock South Africa at start of chase
-
US deported record 61,680 Guatemalans in 2024: agency
-
Double centurion Shah inspires Afghanistan fightback in Zimbabwe
-
Diallo wants to make 'history' with struggling Man Utd
-
Evergreen Brignone wins giant slalom to end Semmering drought
-
Putin apologises to Azerbaijan without claiming responsibility in plane crash
-
Guardiola won't quit troubled Man City
-
Gaza child amputees get new limbs but can't shake war trauma
-
Evergreen Brignone powers to Semmering giant slalom win
-
Thousands in Georgia human chain as pro-EU protests enter 2nd month
-
Turkey's pro-Kurd party meets jailed PKK leader
-
WHO chief says narrowly escaped death in Israeli strikes on Yemen airport
-
Swiss Monney takes maiden World Cup win in Bormio downhill
-
De Minaur wins but Australia crash to Argentina at United Cup
-
EU universal charger rules come into force
-
Evenepoel targets return in time for Ardennes classics
NYSE - LSE
| RBGPF | 100% | 59.84 | $ | |
| CMSD | -0.67% | 23.32 | $ | |
| NGG | 0.66% | 59.31 | $ | |
| RIO | -0.41% | 59.01 | $ | |
| SCS | 0.58% | 11.97 | $ | |
| AZN | -0.39% | 66.26 | $ | |
| GSK | -0.12% | 34.08 | $ | |
| RELX | -0.61% | 45.58 | $ | |
| CMSC | -0.85% | 23.46 | $ | |
| BCC | -1.91% | 120.63 | $ | |
| RYCEF | 0.14% | 7.27 | $ | |
| BCE | -0.93% | 22.66 | $ | |
| BTI | -0.33% | 36.31 | $ | |
| VOD | 0.12% | 8.43 | $ | |
| BP | 0.38% | 28.96 | $ | |
| JRI | -0.41% | 12.15 | $ |
Philippines health insurer hacked: What we know
Hackers have stolen the personal data of potentially millions of people from the Philippines's national health insurer, which has urged members to change their passwords after the "staggering" cyberattack.
The hackers have started releasing files including confidential memos from the stolen data to pressure the government into paying a $300,000 ransom.
Here is what we know so far about the attack, which was discovered by the Philippine Health Insurance Corporation (PhilHealth) on September 22:
What did the hackers steal?
PhilHealth and the government have yet to say exactly how many people have been impacted, but the insurer warned members in a notice that data such as addresses, phone numbers and insurance IDs was compromised.
As of June 30, according to its website, PhilHealth had more than 59 million direct and indirect contributors -- more than half the population of the Philippines.
PhilHealth asked members to monitor credit card transactions and change passwords, especially for financial services.
Separately, employee information was also stolen from the targeted computers.
The hackers released some of the data on the dark web, showing health memos and other information that a top government official described as confidential.
An investigation into the scale of the attack is ongoing, but the National Privacy Commission has described the amount of data stolen as "staggering".
Who are the hackers, and what do they want?
The Philippine government has referred to the attackers as the Medusa group, who have demanded $300,000 to restore access to PhilHealth computers and delete the stolen data.
MedusaLocker, first detected in late 2019, has been used to mainly target healthcare organisations and its creators took particular advantage of the emergency situation during the Covid-19 pandemic, according to a US government report.
The ransomware has been sold to criminal actors, and a US government cybersecurity advisory said its creator receives a cut of any ransom.
It was not clear if the Medusa group identified by the Philippines government is the creator of or an entity that purchased MedusaLocker.
How did they get the data?
On September 22, PhilHealth staff were unable to access a number of computers, which displayed a message saying hackers had locked the machines and encrypted the data.
The insurer shut down the affected systems to try and stop the attack from spreading, slowing or entirely shutting down some online services for days.
The government has so far not said exactly how hackers got access to the computers.
But in interviews with local media last week, senior PhilHealth official Israel Pargas said the insurer did not have an antivirus software at the time of the attack.
How has the government responded?
With a blunt 'No'. The Philippines does not pay ransom in any criminal cases, including cyberattacks, officials have said.
However, with hackers releasing more data from the stolen files, calls have grown for the government to conduct an audit of its cyber defences.
The National Privacy Commission said Saturday it has started an investigation into any potential lapses and data law violations by PhilHealth.
The NPC said its analysis of 734 GB of stolen data revealed "sensitive personal data", and warned the public that anyone who downloads this information could face criminal charges.
T.Ward--AMWN
