Ukrainian hacker reportedly steals wealth of medical documents

Ukrainian hacker reportedly steals wealth of medical documents

Sign-up to a data breach claim today - use our quick and easy form to begin your claim for thousands of pounds in compensation.

Start Your Claim
Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy

solicitors regulation authority

A cyber criminal from the Ukraine admitted on twitter to stealing 105,000 documents from the Central Ohio Urology Group. The documents included patient names, diagnosis information, addresses, and dates of birth. The Urology group is meant to be the second biggest health system in the state with 24 locations.

A screenshot was posted on twitter by the alleged cyber criminal listing stolen information with claims that some 156GB of data had been uploaded to a Google Drive.

No comment has been made by the Central Ohio Urology Group, but one thing is for sure: this is a serious breach.

Data breaches involving health institutions are often the most serious, because the information leaked is often very personal, and highly confidential. We commonly represent victims for NHS data leaks here in the UK, including one of the most serious ones ever to have happened here in the UK involving the 56 Dean Street Clinic.

We know first hand how damaging health related leaks can be.

The potential problems for the patients whose information has been reportedly leaked could be huge.

Political motives

Lee Johnstone, founder of Cyber Wars News and security researcher, told ZDNet that the breach was caused by a document manager system dump. This involved over 54,500 PDF files; 46,000 Microsoft Word documents; and other data like system files like executable files and healthcare-related apps.

Many of the files that were stolen were internal documents from the health organisation, but some documents contained billing information, insurance-related files, and health reimbursement details.

Non-password protected Excel files with log files that included surgery details, doctors names and drug information were also contained in the breach.

The hack was supposedly carried out for political reasons with the hacker gaining access through SQL injection, which is an easy attack to perform on out-of-date systems, according to ZDNet.

Start Your Claim

You can call our claims team free from a landline or mobile on 0800 634 7575 or click on the link below to create a call back with one of our expert Data Claims team.Information on how we handle your data is available in our Privacy Policy.

We offer genuine No Win, No Fee agreements for our clients. Why we do this is simple:

Leading Data Breach Lawyers
Our experience speaks for itself.
We will fight for your right to compensation.
Access to Justice
As a victim of a data breach or hack, you deserve your chance to get access to justice.
Risks Assessment
We carefully risk assess your case and take it on if we think we have a good chance of winning the claim.

Request A Callback From Our Team

Fill out our quick call back form below and we'll contact you when you're ready to talk to us.

Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy

solicitors regulation authority

Contact is © of Your Lawyers Limited - we are 'Authorised and Regulated by the Solicitors Regulation Authority (SRA number 508768)'
arrow-up icon