As part of a regular Deepweb and Darkweb monitoring activity, researchers at threat intelligence firm Cyble identified a credible threat actor who was selling the database of COVID-19 patients of Indonesia.
The threat actor is offering around 230,000+ patients’ records in one of the dark web markets.
The leaked dump includes name, address, present address, telephone number, citizenship, diagnosis date, result, result date, and many more.
Cyble has analyzed the data and confirmed its authenticity, it also indexed the record in its data breach monitoring and notification service AmiBreached.com.
“Cyble has acquired, validated and, indexed the leak on their data breach monitoring and notification platform, AmiBreached.com – people who’re concerned about their information exposure can register on the platform to ascertain the risks.” reads the post published by Cyble.
The company recommends people to:
(SecurityAffairs – hacking, Indonesian COVID-19 patients)