Star Health Insurance Hack
- Mohnish Singh
- Oct 11, 2024
- 2 min read
Updated: Oct 20, 2024
The recent hack on Star Health Insurance highlights a growing trend of cyberattacks targeting Indian firms, particularly in the health sector. Here are key facts regarding this incident and related breaches:
Star Health Insurance Hack
- Incident Overview: Star Health Insurance was compromised, leading to the potential exposure of sensitive customer data, including personal and medical information.
- Impact: The breach could affect millions of policyholders, raising concerns about identity theft and misuse of personal data.
Similar Domain Breaches
- Government Domains Breached: The breach of Star Health is part of a broader pattern where government domains such as @nic.in and @gov.in were compromised indirectly through breaches at companies like Air India, Big Basket, and Dominos. Hackers accessed these domains using leaked credentials from these organizations.
- Phishing Campaigns: Following these breaches, there was an increase in phishing campaigns targeting government officials, utilizing spoofed emails that appeared legitimate due to the compromised domains.
Other Targeted Indian Firms
- Telecom Data Breach (January 2024): A significant breach involved approximately 750 million records from major telecom providers in India, impacting around 85% of the population. This breach exposed sensitive information such as names and mobile numbers, with the data being sold on the dark web for around $3000.
- Hyundai Motor India (January 2024): A critical data breach occurred when web links shared via WhatsApp exposed personal customer information, including phone numbers and vehicle details.
- Sparsh Portal Data Leak (January 2024): Malware compromised data primarily from Kerala's personnel, highlighting vulnerabilities in government systems.
Organization | Details | Impact | Data Exposed | Hacker |
Indian Telecom Data Breach (Jan 2024) | Data Size: 1.8 Terabytes (estimated 750 million records, impacting 85% of the Indian population). | Financial loss, identity theft, cyber-attacks, and potential for future large-scale attacks. | Names, mobile numbers, addresses, and potentially Aadhaar information. | Threat actors named CyboDevil and UNIT8200 |
Dark Web Price: $3000 for the entire dataset. | ||||
Affected Parties: All major telecom providers in India. | ||||
Significance: Exposed vulnerabilities in government and telecom data security systems. | ||||
Sparsh Portal Data Leak (Jan 2024) | Affected Personnel: Primarily personnel from Kerala, India. | Increased risk of unauthorized access to pension accounts and potential financial loss. | Usernames, passwords, and pension numbers. | N/A |
Possible Cause: Malware named “lumma.” Severity: Highlighted vulnerabilities in the TCS-developed SPARSH portal. | ||||
Additional Concerns: Leaked data found on a Russian marketplace, raising possibilities of international criminal activity. | ||||
Hyundai Motor India Critical Data Breach (Jan 2024) | Bug Details: The bug involved web links shared by Hyundai Motor India via WhatsApp after customers had their vehicles serviced. | Increased risk of identity theft and fraud. | Registered owner names, Mailing addresses, email addresses, phone numbers, and vehicle details (such as registration numbers, colors, engine numbers, and mileage) | N/A |
Exposed Information: These links, leading to repair orders and invoices in PDF format, contained the customer’s phone number. | ||||
Availability: Customer’s personal information in the South Asian market. | ||||
Current Situtaion: Hyundai Motor India reported that bug is fixed now. |
Summary of Cybersecurity Landscape in India
- The frequency and severity of cyberattacks in India are escalating, with healthcare and government sectors being particularly vulnerable.
- Organizations are urged to enhance their cybersecurity measures and public awareness to mitigate risks associated with data breaches.
Comments