Dutch police have arrested two individuals for allegedly selling COVID-19 patient data stolen from the Dutch health ministry.
The availability of COVID-19 patient data in the cybercrime underground was spotted by the RTL Nieuws reporter Daniel Verlaan.
Verlaan discovered ads for stolen Dutch citizen data advertised on multiple instant messaging apps, including Telegram, Snapchat, and Wickr.
Dutch police arrested the duo within 24 hours of the complaint.
According to the Dutch newspaper, millions of patient details were offered for sale, including address details, telephone, and BSN identifiers (Dutch social security number). Data appears to be from the two most important systems of the Dutch Municipal Health Service (GGD).
The data was allegedly stolen from two government systems used by the GGD named CoronIT, which contains details about Dutch citizens who made a COVID-19 test, and HPzone Light, one of the DDG’s contact-tracing systems.
Data was offered for prices ranging from €30 to €50 per person.
Verlaan discovered that the two suspects had access to official Dutch government COVID-19 systems because they were working in DDG call centers.
Experts pointed out that the availability of the BSN number (Dutch social security number) could expose citizens to financial fraud and identity theft.
Full article on https://securityaffairs.co/wordpress/113846/cyber-crime/covid-19-patient-data-sale.html
#covid19 #corona #patient #data #yokdata