A threat actor has allegedly leaked sensitive data belonging to Medicover Poland, a prominent private healthcare provider in Europe. The company, which operates a vast network of hospitals, clinics, and diagnostic laboratories, is a key player in the Polish healthcare system, serving a large number of patients. The alleged breach is particularly concerning due to the highly sensitive nature of the information handled by the organization, which includes personal and medical data.
According to a post on a specialized online forum, the threat actor has released a sample of what they claim are login credentials for Medicover’s online patient portal. The post alleges that the compromised accounts provide access to a wealth of sensitive patient information and highlights a lack of Multi-Factor Authentication (MFA) on the accounts, making them more vulnerable to unauthorized access. The exposed credentials allegedly allow access to the following:
- Personal medical records
- Appointment history
- Laboratory results
The data was allegedly shared in a plain text format containing URLs, logins, and passwords for the patient accounts. While the initial sample is small, it suggests a potentially larger dataset may be compromised. This incident underscores the critical need for robust security measures, especially for organizations entrusted with sensitive health information.
