The investigation was initiated this Wednesday for “fraudulent access to, and maintenance in, an automated data processing system” and "fraudulent extraction, possession and transmission” of such data, according to the public prosecutor's office.
A file reportedly containing 491,840 names, along with contact details (postal address, telephone, email) and a social security registration number, was circulating freely on at least one forum referenced by search engines.
🔴[Info Libé] Des données confidentielles de 500 000 patients français dérobées à des laboratoires d’analyse médicale et diffusées en ligne. L'équipe de @CheckNewsfr a retrouvé l’origine d’une fuite de données liées à la santé d’une ampleur inédite en France. ⚕️ (1/4)
— CheckNews (@CheckNewsfr) February 23, 2021
- French cyberpolice break up massive hacking ring
- Cyber-attackers target French hospitals under pressure from Covid crisis
These names are sometimes accompanied by information on blood type, the doctor treating the patient or the health insurance company, or by comments on the state of health, drug treatments or pathologies (particularly HIV).
According to the Checknews section of daily newspaper Libération, which brought the issue to light, the data comes from around thirty medical laboratories, mainly located in north-west France, and corresponds with samples taken between 2015 and October 2020.
(AFP)
