Laura Noonan in Dublin and James Shotter in Warsaw report:
Medical and personal information about Irish patients stolen by hackers last week is now being shared online, screenshots and files seen by the Financial Times show. The records offered online by hackers to further their demands for almost $20m in ransom also include internal health service files, such as minutes of meetings, equipment purchase details and correspondence with patients.
Read more on Financial Times. The proof of claims were not dumped on Conti’s clear net or dark web leak sites, but apparently were displayed in a chat between a Conti negotiator and an unidentified individual. While in another incident (Broward County Public Schools) Conti intentionally made some of their chat negotiations public to increase pressure on victims, in this case, it sounds like they were just observed in negotiations by researchers who routinely try to observe chat negotiations.
Saying that the data have “appeared online” or is “being shared online” is technically accurate, guess, but I think it would be more accurate to say that the hackers have offered some proof of claims to HSE that may have been intercepted or observed by others. They have not (yet) actually started dumping any patient data on their dedicated leak site.
Update 1: As noted above, there are various ways data can be shared. Senan Moloney now reports:
HSE medical data has already been released and has led to Irish citizens receiving unsolicited approaches from abroad, the Dáil has heard.
Labour Party leader Alan Kelly said he was driving up to Dublin today when his local GP was in touch to say one of his patients had been contacted by a medical organisation from outside the State.
It had “all his detail, as regards a procedure he needed — his medical history, knowing exactly what he required medically and offering in a short period of time to be able to provide the operation he needed.”
Read more on Independent.ie.