Russian hackers hit Indian Health Ministry’s website: Cyber-security firm

Cyber-security researchers from CloudSEK have claimed {that a} Russian hacker group focused the Indian Health Ministry web site and infiltrated its Health Management Information System (HMIS).

The pro-Russian hacker group referred to as Phoenix allegedly compromised the HMIS Portal and had entry to the info of workers and chief physicians of all of the hospitals within the nation, claimed the AI-driven cybersecurity firm.

According to CloudSEK’s contextual AI digital danger platform XVigil, “the motive behind this goal was the sanctions imposed towards the Russian Federation the place Indian authorities determined to not violate the sanctions in addition to adjust to the worth ceiling for Russian oil authorised by G7 nations”.

“This determination resulted in a number of polls on the telegram channel of the Russian Hacktivist Phoenix asking the followers for his or her votes,” it added.

According to safety researchers, the Russian risk actors might promote exfiltrated license paperwork and private identifiable data (PII) on cybercrime boards and conduct doc fraud utilizing PII and license paperwork.

Active since January 2022, the Russian hacktivist group Phoenix was noticed utilizing social engineering methods to lure the victims in a phishing rip-off thereafter stealing the passwords and having access to its victims’ financial institution or e-payment accounts.

“The group has performed a collection of DDoS assaults towards a number of entities prior to now,” mentioned the report.

Phoenix has additionally engaged in {hardware} hacking, unlocking misplaced or stolen iPhones and reselling them in Kiev and Kharkiv via a community of managed shops.

The Russian Hactivist group has earlier attacked hospitals primarily based in Japan and the UK, together with a US-based healthcare organisation serving the US army, mentioned the report.

Late final yr, the All India Institute of Medical Sciences (AIIMS) in Delhi grew to become the sufferer of an enormous ransomwareassault the place Chinese involvement was suspected.

Sensitive information of at the least 40 million sufferers, together with political leaders and different VIPs, have been doubtlessly compromised within the hacking.

Theattackwas analysed by the Indian Computer Emergency Response Team (CERT-In) and was discovered to have been brought on by improper community segmentation.

Another prime hospital within the nationwide capital, the Safdarjung Hospital, was additionally hit by cyber-criminals.

However, the hacking assault on the Safdarjung Hospital was not as extreme because the AIIMS-Delhi confronted and the possibilities of information leak have been much less as main a part of hospital work runs on guide mode.

(With inputs from IANS)