Pierluigi Paganini June 21, 2020

Security researchers at threat intelligence firm Cyble discovered over 230.000 Indonesian COVID-19 patients records leaked in the darknet.

As part of a regular Deepweb and Darkweb monitoring activity, researchers at threat intelligence firm Cyble identified a credible threat actor who was selling the database of COVID-19 patients of Indonesia.

The threat actor is offering around 230,000+ patients’ records in one of the dark web markets.

The leaked dump includes name, address, present address, telephone number, citizenship, diagnosis date, result, result date, and many more.

Cyble has analyzed the data and confirmed its authenticity, it also indexed the record in its data breach monitoring and notification service AmiBreached.com.

“Cyble has acquired, validated and, indexed the leak on their data breach monitoring and notification platform, AmiBreached.com – people who’re concerned about their information exposure can register on the platform to ascertain the risks.” reads the post published by Cyble.

The company recommends people to:

• Never share personal information, including financial information over the phone, email or SMSs
• Use strong passwords and enforce multi-factor authentication where possible
• Regularly monitor your financial transaction, if you notice any suspicious transaction, contact your bank immediately.
• Turn-on automatic software update feature on your computer, mobile and other connected devices where possible and pragmatic
• Use a reputed anti-virus and internet security software package on your connected devices including PC, Laptop, Mobile
• People who are concerned about their exposure in darkweb can register at AmiBreached.com to ascertain their exposure.

Pierluigi Paganini

(SecurityAffairs – hacking, Indonesian COVID-19 patients)

[adrotate banner=”5″]

[adrotate banner=”13″]