WorldEuropePatient data from the Rhodense Territorial Social Health Authorities sold on the...

Patient data from the Rhodense Territorial Social Health Authorities sold on the Dark Web

Type of event:
Cyberattack

Victims

Wounded

Date

June 20, 2024

What happened

On 6 June the ASST Rhodense (Territorial Social Health Authorities-Milan) was the victim of a serious ransomware attack, claimed by the Cicada3301 ransomware group, which compromised local health services. After a few weeks, the cybercriminal group published 1TB of data stolen on the dark web, including personal patient information such as prescriptions, medical reports, and other sensitive documents.
As is now customary, in ransomware attacks, if the victim does not pay the ransom requested by the cybercriminal group, the latter puts the stolen data up for sale on the dark web.
The cyberattack on ASST Rhodense represents a significant breach of patient safety and privacy. This cyberattack and the subsequent placing of stolen sensitive data on the dark web highlight the gravity of the situation and the need for more robust cybersecurity measures in the healthcare sector.

Where it happened

Main sources