The Health Information Trust Alliance (HITRUST) has become a victim to hackers who have managed to breach its server and leak data. The hackers who use the handle @TeamBerserk have announced the leak from the HITRUST main alliance server and website (https://www.hitrustalliance.net) in the early hours of the 27th May, 2013. HITRUST is focused on information security of the health industry offering insights into risk management, security breaches and offers training for security experts in these fields. > The Health Information Trust Alliance (HITRUST) was born out of the belief that information security should be a core pillar of, rather than an obstacle to, the broad adoption of health information systems and exchanges. About
The leak was announced from twitter and posted to anonpaste.me in the common format that we see coming from this team of hackers who break down each section into an easy to read format. > @cyber_war_news Brian Snow NSA faggot #fail #voltagesecurity hitrustalliance #hacked by #TeamBerserk anonpaste.me/anonpaste2/ind… #rooted — TeamBerserk (@TeamBerserk) May 26, 2013
Data leaked includes server based information, information from several penetration tests and scans as well as a extraction of user accounts and user personal details. There is 6 user accounts that contain user names and encrypted passwords and 111 application details from people who have registered with the site which includes full personal details such as full names, addresses, locations, contact telephone numbers, IP addresses, company names and more which come from sections such as information security, Health, Pharmaceutical and more. Breaches like this amaze me as they offer training to prevent this exact type of thing happening yet they are insecure themselves.