the Paris prosecutor’s office opens an investigation after data stolen from mutual health insurance companies

2024-02-09 19:14:36

The Paris prosecutor’s office has opened an investigation into the cyberattacks of two third-party payment operators, Viamedis and Almerys, which might constitute one of the most massive data leaks observed in France, he announced on Friday February 9.

“The data concerned are, for policyholders and their families, marital status, date of birth and Social Security number, the name of the health insurer as well as the guarantees of the contract subscribed”the policeman of digital privacy clarified in a press release on Wednesday, adding that banking and medical information relating to health reimbursements “would not be affected”.

Read also | Cyberattack once morest Viamedis and Almerys: what precautions should be taken?

Add to your selections

Credential theft

Affected French people are advised to“be careful regarding the requests that[ils peuvent] receive, in particular if they concern reimbursements of health costs”but also “to periodically check the activities and movements on [leurs] different accounts ». It is in fact “possible that the data that was the subject of the breach is coupled with other information from previous data leaks”explained the CNIL.

The attack was carried out by the usurpation of health professionals’ identifiers and passwords. Almerys and Viamedis have not published any information to understand whether the attacks were simply aimed at stealing data, or whether they might have other goals such as planting ransomware.

The alert was given on February 1. Viamedis, which filed a complaint with the public prosecutor, indicated that it had disconnected its management platform upon discovery of the intrusion, which did not prevent social security policy holders from benefiting from third-party payment. . Its general director, Christophe Candé, explained that it was not a ransomware attack but an intrusion into the platform. “A healthcare professional’s account was phished”he then revealed.

Almerys, for its part, declared on Wednesday that its central information system had not been affected by the cyberattack. Only sound “portal dedicated to healthcare professionals” was reached and closed, the company claimed.

Read also | After Viamedis, the third-party payment specialist Almerys is also the victim of hacking

Add to your selections

1707578455
#Paris #prosecutors #office #opens #investigation #data #stolen #mutual #health #insurance #companies

Leave a Replay