A significant data breach has allegedly exposed the sensitive records of 56,000 patients from a clinic system in Morocco. The compromised database, containing records spanning from 2020 to 2025, was posted online by a threat actor. The origin of the breach is currently under investigation, but the incident highlights a major cybersecurity failure within the nation’s healthcare sector, putting thousands of individuals at risk of identity theft and other malicious activities.
The leaked data is extensive and highly sensitive, painting a detailed picture of patients’ medical histories and personal information. The exposure of such confidential data is a severe violation of privacy and could have long-lasting consequences for the individuals affected. This incident underscores the critical importance for healthcare organizations to implement robust cybersecurity measures to protect the valuable and private information they are entrusted with.
The allegedly leaked data includes the following:
- Patient ID, name, birth date, and gender
- Examination and physician codes
- Dossier numbers and center details
- Creation date and time of records
- Dictated medical notes and prescribing physician
- Patient age and examination descriptions
- Radiologist and validating physician details
- Study instance identifiers
