Hackers Breach Virgina Health Database, Demand $10 million Ransom

From DailyTech
by Michael Barkoviak

The Virginia Health database has been compromised, and now hackers are holding a $10M ransom for return of the records

The Virginia Prescription Monitoring Program has reportedly been compromised, with those responsible deleting records and now wanting $10 million before the records are restored, Wikileaks.org discovered.

"I have your [expletive] In *my* possession, right now, are 8,257,378 patient records and a total of 35,548,087 prescriptions," the hacker said in a ransom note. "Also, I made an encrypted backup and deleted the original. Unfortunately for Virginia, their backups seem to have gone missing, too. Uhoh :(For $10 million, I will gladly send along the password."

The Virginia Prescription Monitoring Program website is used to help pharmacists track prescription drug abuse, and has the records of 8 million state residents available through the network. The network, along with other portals connected to the Virginia Department of Health Professions, is still unavailable at the moment.

State health officials are now working with the FBI to try and identify and locate those responsible for bringing down the network. As the case is ongoing, the FBI hasn't issued a statement regarding the intrusion, though will be looking for sources both in the United States and across the world.

"We do have some of (the) systems restored, but we're being very careful in working with experts and authorities to take essential steps as we proceed forward," Virginia Department of Health Professionals Sandra Ryals said in a statement. "Only when the experts tell us that these systems are safe and secure for being live and interactive will that restoration be complete."

Online data breaches unfortunately are becoming more common, though this is one of the first times a ransom note has been left in exchange for data records. Extortion-based hacking attempts continually concern security experts, as there appear to be more foreign-based hackers launching attacks against U.S. computer networks.

The FBI is unlikely to disclose the location of those responsible for this data intrusion until they're apprehended, though security experts will likely follow the case closely.

ExpressScripts, a pharmacy prescription processor, suffered an extortion attempt in 2008, when hackers threatened to release the personal and medical information of Americans in exchange for money. The company now has $1 million leading to the arrest and conviction of those responsible.

Social Security numbers, personal medical information, and financial information are all popular targets for hackers, who can either sell the information to spammers and people involved with credit fraud, or hold the information for ransom.

Copyright © Jewish Internet Defense Force
All Rights Reserved

The views expressed on this website do not necessarily reflect the views of the JIDF. The content is not intended to malign any religion, ethnic group, club, organization, company or individual. This site's intention is to do no harm, to not injure others, defame, or libel. All data and information provided on this site is for informational, educational, and/or entertainment purposes only. The Jewish Internet Defense Force (JIDF) makes no representations as to accuracy, currentness, correctness, suitability, or validity of any information on this site and will not be liable for any errors, omissions, or delays in this information or any losses, injuries, or damages arising from its display or use, or access to this site. We are not responsible for translation or interpretation of content. We are not responsible for defamatory statements bound to government, religious or other laws from the reader’s country of origin. All information is provided on an as-is basis with no warranties, and confers no rights. We are not responsible for the actions, content, accuracy, opinions expressed, privacy policies, products or services or for any damages or losses, directly or indirectly, caused or alleged to have been caused as a result of your use or reliance on such information on the Jewish Internet Defense Force site. This site includes links to other sites and blogs operated by third parties. These links are provided as a convenience to you and as an additional avenue of access to the information contained therein. We have not reviewed all of the information on other sites and are not responsible for the content of any other sites or any products or services that may be offered through other sites. The inclusion of these links in no way indicates their endorsement, support or approval of the contents of this site or the policies or positions of the JIDF. We have the right to edit, remove or deny access to content that is determined to be, in our sole discretion, unacceptable. These Terms and Conditions of Use apply to you when you view, access or otherwise use this blog and the Website. The JIDF is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to amazon.com.
Related Posts with Thumbnails