Cybercrime

Hacker arrested in France for theft of COVID-19 tests for 1.4 million Parisians

Image: Chris Karidis

French police have detained a 22-year-old suspect on the accusation of breaching a Paris hospital, stealing, and then leaking the COVID-19 test results of more than 1.4 million patients.

The suspect, whose name was not released by authorities, was arrested on Wednesday, October 6, in the village of Ollioules dans le Var, in the south of France, according to a press release from the Paris police.

French newspaper Le Journal du Dimanche, which first reported the arrest earlier today, said the suspect admitted to his crime in police custody.

Suspect breached the largest hospital trust in Europe

Authorities said the suspect breached Paris-based hospital trust Assistance Publique – Hôpitaux de Paris (AP-HP), the largest hospital system in Europe and one of the Top 10 hospital trusts in the world.

The breach took place last month, in early September. AP-HP disclosed the incident in a press release published on its website, three days after it discovered the hack, on September 12.

Hospital officials said the hacker breached a file-sharing server its staff was using to share laboratory tests with the French Health Ministry.

According to officials, the 22-year-old broke into this system, stole files containing COVID-19 test results, and uploaded the files on file-sharing portal MEGA.

The suspect then shared links to these files on French video hosting platform JeuxVideo, and on his now-deleted Twitter profile of @Scrizophrene.

Police said the suspect often posted messages against France’s COVID-19 restrictions and the use of “passe sanitaire” — a document issued in France to citizens who have been vaccinated against the COVID-19 virus.

Officials said they’ve taken down the stolen AP-HP data from the MEGA platform, but they believe the files had been downloaded and broadly shared through other means.

Per officials, the stolen files contained information such as:

  • Full names
  • Dates of birth
  • Gender
  • Social security numbers
  • Home addresses
  • Emails
  • Telephone numbers
  • COVID-19 test results from mid-2020

AP-HP said it has sent notification letters to all patients that had their data stolen.

Catalin Cimpanu

Catalin Cimpanu is a former cybersecurity reporter for Record Future News. He previously worked at ZDNet and Bleeping Computer, where he became a well-known name in the industry for his constant scoops on new vulnerabilities, cyberattacks, and law enforcement actions against hackers.

Share
Published by
Catalin Cimpanu
Tags: AP-HParrestCOVID-19FrancehackerHealthcarehospitalParis
1 year ago

Recent Posts

LockBit ransomware group threatens Royal Mail with data leak deadline

The LockBit cybercriminals told the British mail service it has until February 9 to pay…

58 mins ago

Shares in British engineering company dive as it announces cost of cyberattack

Morgan Advanced Materials said its response to a cyberattack in January could cost as much…

1 hour ago

All classes canceled at Irish university as it announces ‘significant IT breach’

Munster Technological University (MTU) in Ireland announced on Monday that its campuses in Cork would…

2 hours ago

China’s tech weapons roll in to quell demonstrations, identify protesters

Back in October, a day before President Xi Jinping was set to assume an unprecedented…

3 hours ago

West Virginia students returning to class after days-long outage following cyberattack

Nearly 20,000 students in West Virginia were forced to miss classes on Monday due to…

16 hours ago

Darknet drug market BlackSprut openly advertises on billboards in Moscow

It's unclear why BlackSprut was able to buy the Moscow billboard space, but Russia is…

18 hours ago