A threat actor has allegedly posted a database for sale on a cybercrime forum containing the sensitive information of 433,000 medical practitioners from the United States. The data, which the seller claims has had duplicates removed, appears to compile a vast amount of professional and personal information on healthcare workers across the country. The origin of the data is currently unknown, and it is unclear if it was sourced from a single breach or compiled from multiple sources.
The leaked information is comprehensive, potentially exposing these medical professionals to various cyber threats such as targeted phishing campaigns, identity theft, and other fraudulent activities. The data allegedly includes a wide range of personally identifiable information (PII) and professional details, making it highly valuable on underground forums. The victims are doctors, surgeons, specialists, and other healthcare providers who form a critical part of the nation’s healthcare infrastructure.
The compromised data allegedly includes the following:
- Phone
- Full Name
- First Name
- Last Name
- Title
- Specialty
- Hospital
- Website
- Fax
- Address
- City
- State
- Zip Code
