Archetyp Links

A hacker group named Killsec has taken over an attack on a software company responsible for taking care of numerous health services in Brazil, MedicSolution, asking for rescue negotiations.The occurrence, classic case of ransomware, was last week and the company would have been informed that its data would be leaked if the negotiation request was ignored. The invasion, instead of focusing on a single clinic, looked directly on the entire group's software provider, considerably expanding the reach.Institutions affected by ransomware attack include Vita Exam, Espaço Vida Clinic, Toledo Diagnostic Center, Alvaro and Labclinic Laboratory. How and what data leaked Canaltech is on WhatsApp!Enter the channel and follow news and technology tips WhatsApp Continues after advertising According to the Resecurity security company, cybercriminals would have obtained more than 34 GB of data, with 94,818 files.They include: Medical evaluations; Pictures of patients, including body, without censorship; X-rays; Registrations related to minors; Laboratory results. Killsec has attacked Brazilian entities previously, leaking personal and financial data from government systems.The most recent attack, however, focused on health operations, especially private.Stolen medical records can be used for extortion, affecting both companies and their patients. Resecurity stated that the data was not purchased thanks to complex hacker techniques, but through misconduct data centers in the cloud.The delay in incident response and the flawed monitoring of sectors like this show that there are still many vulnerabilities in the digital world - MedicSolution has not yet issued a statement on the subject. The ransomware attack is also part of a larger campaign in Latin America and regions in the surrounding area: Killsec has already taken over attacks on Archer Health in the United States;Suiza Lab, in Peru;and Gotelemedicine and Emedicoerp in Colombia.Last month, the same group leaked data from Doctocliq, a Peruvian platform that serves more than 3,500 doctors in 20 countries. It is worth mentioning that, according to the General Data Protection Law (LGPD), health data in Brazil is classified as sensitive and is required to have robust security and explicit consent to their collection, with reporting of invasions having to be warned within three business days. The National Data Protection Authority (ANPD) is guaranteeing the law and has fined companies from various sectors of R $ 98 million since 2023 for non -compliance, with the health area being the most affected. Continues after advertising See also: Video |How to protect yourself from the ransomware attack wannacrypt Continues after advertising Source: Infosecurity Magazine