DIRECTORY

  • Alerts
  • APTs
  • Blog
  • Books
  • Certifications
  • Cheat Sheets
  • Courses
  • Cyber Briefing
  • CyberDecoded
  • CyberReview
  • CyberStory
  • CyberTips
  • Definitions
  • Domains
  • Entertainment
  • FAQ
  • Frameworks
  • Hardware Tools
  • Incidents
  • Malware
  • News
  • Papers
  • Podcasts
  • Quotes
  • Reports
  • Tools
  • Threats
  • Tutorials
No Result
View All Result
  • Login
  • Register
  • Cyber Citizens
  • Cyber Professionals
  • Institutions
CyberMaterial
Talk To An Expert
  • Cyber Citizens
  • Cyber Professionals
  • Institutions
CyberMaterial
No Result
View All Result
Talk To An Expert
CyberMaterial
Home Incidents

India Ministry of AYUSH Data Breach

September 5, 2023
Reading Time: 2 mins read
in Incidents

The Ministry of AYUSH website in Jharkhand has suffered a data breach, exposing more than 320,000 patient records, according to cybersecurity researchers. CloudSEK, the cybersecurity company behind the discovery, revealed that the breach involved a database of 7.3 MB, containing patient records containing personally identifiable information (PII) and medical diagnoses.

Additionally, the compromised data included sensitive details about doctors, including their PII, login credentials, usernames, passwords, and phone numbers. The breach was attributed to a threat actor known as “Tanaka.”

The Ministry of AYUSH website serves as a crucial source of information about various alternative medical treatments, including Ayurveda, Yoga, Naturopathy, Unani, Siddha, and Homoeopathy. Researchers established a connection between the compromised data and the Ayush Jharkhand website by cross-referencing information shared by the threat actor, such as chatbot and blog post data, with publicly accessible data on the website.

The breach exposed approximately 500 login credentials (some in cleartext), contact information for 737 individuals who used the “Contact Us” form, 472 records containing PII details of doctors, and PII data for 91 doctors, including information about their postings.

This data breach poses significant risks, including potential account takeovers due to the leaked data, brute force attacks exploiting common or weak passwords, and an increased susceptibility to sophisticated phishing attacks.

Source:
  • Ayush Jharkhand portal breached, 3.2L patients’ records exposed: Security researchers
Tags: CyberattackCybersecurityincidentsIncidents 2023IndiaMinistry of AYUSHPersonally Identifiable InformationPHIPIIProtected Health Information (PHI)September 2023TanakaVulnarabilities
4
VIEWS
ADVERTISEMENT

Related Posts

ChildFund NZ Partner’s Data Breach

ChildFund NZ Partner’s Data Breach

September 29, 2023
Baruch College Malware Incident Update

Baruch College Malware Incident Update

September 29, 2023
Russian Flight Booking System Cyberattack

Russian Flight Booking System Cyberattack

September 29, 2023
Volkswagen Faces Major IT Disruption

Volkswagen Faces Major IT Disruption

September 29, 2023

More Articles

Incidents

IT Services Provider Hit by Donut Gang

September 22, 2023
Alerts

Chinese-Language Phishing Campaigns

September 20, 2023
Cyber Briefing

September 22, 2023 – Cyber Briefing

September 22, 2023
Cyber Briefing

September 21, 2023 – Cyber Briefing

September 21, 2023

Security through data

Cybersecurity Domains

  • API Security
  • Business Continuity
  • Career Development
  • Compliance
  • Cryptography
  • HSM
  • KPIs / KRIs
  • Penetration Testing
  • Shift Left
  • Vulnerability Scan

Emerging Technologies

  • 5G
  • Artificial Intelligence
  • Blockchain
  • Cryptocurrency
  • Deepfake
  • E-Commerce
  • Healthcare
  • IoT
  • Quantum Computing

Frameworks

  • CIS Controls
  • CCPA
  • GDPR
  • NIST
  • 23 NYCRR 500
  • HIPAA

Repository

  • Books
  • Certifications
  • Definitions
  • Documents
  • Entertainment
  • Quotes
  • Reports

Threats

  • APTs
  • DDoS
  • Insider Threat
  • Malware
  • Phishing
  • Ransomware
  • Social Engineering

© 2023 | CyberMaterial | All rights reserved.

World’s #1 Cybersecurity Repository

  • About
  • Legal and Privacy Policy
  • Site Map
No Result
View All Result
  • Alerts
  • Incidents
  • News
  • Audience
    • Cyber Citizens
    • Cyber Professionals
    • Institutions
  • Highlights
    • Blog
    • CyberDecoded
    • Cyber Review
    • CyberStory
    • CyberTips
  • Cyber Risks
    • Alerts
    • Attackers
    • Domains
    • Incidents
    • Threats
  • Opportunities
    • Events
    • Jobs
  • Repository
    • Books
    • Certifications
    • Cheat Sheets
    • Courses
    • Definitions
    • Frameworks
    • Games
    • Hardware Tools
    • Memes
    • Movies
    • Papers
    • Podcasts
    • Quotes
    • Reports
    • Tutorials
  • Report Cyber Incident
  • GET HELP
  • Contact Us

Subscribe to our newsletter

© 2022 Cybermaterial - Security Through Data .

Welcome Back!

Sign In with Google
Sign In with Linked In
OR

Forgotten Password? Sign Up

Create New Account!

Sign Up with Google
Sign Up with Linked In
OR

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.