The Dutch police have arrested a 19-year-old man in western Netherlands, suspected of breaching the methods of a healthcare software program vendor within the nation, and stealing tens of hundreds of paperwork.
These paperwork would possibly comprise delicate private and medical information of sufferers of healthcare suppliers utilizing the corporate’s methods. At the moment, it has not been decided if the hacker shared or tried to promote the stolen information, as is widespread in information breaches.
The police traced the person after receiving a report from the hacked firm and are at the moment inspecting the proof collected throughout the arrest on the suspect’s dwelling.
Whereas the police’s announcement doesn’t title the corporate that was breached, BleepingComputer discovered a press launch from Dutch expertise firm Nedap, disclosing a hacking incident of its Carenzorgt.nl portal.
Carengzorgt is a medical portal utilized by 9,023 healthcare suppliers and virtually half one million lively customers, providing options like appointment reserving, doctor-patient and family-patient communication, and medical information safekeeping.
“Within the morning of Monday, 17 October 2022, Nedap was made conscious of a vulnerability within the Carenzorgt.nl system, a digital well being surroundings,” explains the press launch.
“Nedap investigated the vulnerability, resolved it instantly, after which initiated an investigation into the potential affect of this incident.”
“This revealed that this vulnerability was lately misused. Paperwork provided by healthcare suppliers by means of Carenzorgt.nl have been downloaded unauthorized.”
The alarming discovering made Nedap contact the legislation enforcement authorities, because the medical information of many individuals had been within the fingers of an unknown community intruder.
Concurrently, Nedap knowledgeable the healthcare suppliers utilizing the breached portal concerning the safety incident.
The corporate has seen no proof of the stolen paperwork being circulated on the web, however the investigation on that entrance remains to be ongoing.
Nedap highlights that regardless of the annual exterior audits by licensed our bodies and penetration testers which have helped them uncover and repair vulnerabilities in its merchandise, some undetected safety flaws remained.