Going to the hospital is already a frightening ordeal. But now it's becoming even more worrisome, as hackers target hospitals and patients.
We have been telling you about cybercriminals going after hospitals for quite a while now. In fact, one of the most shocking stories we've covered was about a group of Baltimore researchers who tested out the security measures at local medical facilities. It will shock you how easy it was for them to access the records of these facilities. Click here if you missed that story.
Now, a cybercriminal who goes by the name 'TheDarkOverlord' has posted over 10 million stolen health care records for sale on the Dark Web. That number is up from the just over 9 million records that were reportedly posted in June. Among the data are millions of first and last names, addresses, city, state and ZIP codes, phone numbers, birthdays and Social Security numbers.
The hacker is trying to find a buyer for the stolen information. In turn the patient contact information could be used to scam victims. Health insurance, medical treatment, payment records and even patients' credit reports could be affected.
Making matters worse is the fact that it's not just personal information that was taken. Email software supporting HL7 was exploited to gain access to medical imaging. Now the scammer is looking for more health care servers to attack, which means this scam isn't likely to go away anytime soon.
Note: Keep a lookout for news about this breach from your health care providers. One thing you should be doing is checking your medical records a few times a year to make sure they are accurate. If you see any suspicious activity, be sure to report it. And keep reading Happening Now. We'll let you know if any other hospitals fess up to having exposed your health information.