Towards the end of last week, unwanted people forced access to the amelipro accounts of 19 healthcare professionals.
According to initial reports, the attackers were able to access 19 accounts whose email address was compromised. After gaining access to the accounts of these professionals, hackers “carried out “chain” queries, with the use of a robot, of a service called “Infopatient”giving access from social security numbers to certain administrative information of insured persons”. The information concerned is identity data, social security number, as well as data relating to rights. Contact details and bank details, as well as data relating to any pathologies / illnesses and the consumption of care, are not affected.
The IP addresses of the affected accounts have been banned and the professional accounts reset. However, 510,000 policyholders are affected by this data leak. The people concerned will be notified individually of the incident and made aware of the increased risk of phishing to which they could be subjected.
On March 16, Health Insurance notified the CNIL and filed a criminal complaint.
–
