The KDL network of laboratories has launched an investigation into the leakage of user data after a hacker attack on its customer database

Short description

Summarize this content to 100 words The network of clinical and diagnostic laboratories KDL has started an investigation into the incident with the leakage of user data after hackers attacked the customer database.On July 29, 2023, an unknown hacker publicly released a 290 MB file containing 151,000 lines. including about 85,400 unique phone numbers, 43,500 unique e-mail addresses. e-mail addresses, names (sometimes full names), dates of birth, and sometimes the content (in text form) of customer visits to the laboratory between September 30, 2021 and March 22, 2023.Immediately after the incident, KDL did not comment on the alleged leak, but announced a technical failure in the network services. The company warned that due to the failure, registration and access to the personal account, as well as placing orders and ordering a home delivery service through the form on the website, became temporarily unavailable.On July 30, KDL announced that hackers had attacked the company’s website. In order to avoid leakage of customer data, the company temporarily disabled some functions of the site. KDL experts assured that the passport data of clients were not affected. The organization for investigating violations in IS was connected to the investigation of the incident at the company, and Roskomnadzor was also informed about the attack. It is still unclear about the data leak, as the RKN has to start its investigation in this case. In the case of detection of the fact of leakage of the RKN, it can draw up and submit to the court an administrative protocol according to Part 1 of Article 13.11 KpAP. In this case, violation of the legislation in the field of personal data of KDL threatens with an administrative fine in the amount of 60 thousand rubles to 100 thousand rubles.KDL clarified that the company’s website was hacked “with further information about the leak of personal data broadcast by the attackers.” To prevent the leak, the company decided to temporarily disable some site functions and internal services for a while, and the company’s specialists began working on restoring network services.What happened? Our systems were hacked, attackers broadcast information about the leak of personal data. An investigation is underway, according to our experts, the personal medical data and passport data of the patients were not affected.What did you do?They reacted appropriately. In order to quickly make changes to the operation of services, it was decided to temporarily disable some functions of the site. The verification of information about the leak of personal data of KDL customers has been initiated and a notification has been sent to Roskomnadzor (RKN). The IT team of our KDL network is conducting operational work, as of now, the compromised services have been isolated.”Customer trust is the most important value for us, so we took this incident very seriously. Unfortunately, nowadays, no company that works with personal data can be immune from cyberattacks by attackers. The team’s professionalism is evidenced by its ability to promptly respond to threats and solve emerging problems. At present, measures have been taken to actively protect the KDL information system,” explained Yuriy Leonov, general director of the KDL federal network of medical laboratories.All our offices work as usual, analyzes are performed within the specified time. There are temporary difficulties with viewing the results through the site and accessing the personal account, but you can get the results of the tests in the medical office or by writing to us in private messages, we will promptly request the medical department of the status of the order or send the results to the order.”Thank you for your understanding and we apologize for the inconvenience,” KDL said. KDL has 13 laboratories and more than 300 medical offices in various regions of Russia. The network is part of the Medscan group of companies.

The KDL network of laboratories has launched an investigation into the leakage of user data after a hacker attack on its customer database

The network of clinical and diagnostic laboratories KDL has started an investigation into the incident with the leakage of user data after hackers attacked the customer database.

On July 29, 2023, an unknown hacker publicly released a 290 MB file containing 151,000 lines. including about 85,400 unique phone numbers, 43,500 unique e-mail addresses. e-mail addresses, names (sometimes full names), dates of birth, and sometimes the content (in text form) of customer visits to the laboratory between September 30, 2021 and March 22, 2023.

Immediately after the incident, KDL did not comment on the alleged leak, but announced a technical failure in the network services. The company warned that due to the failure, registration and access to the personal account, as well as placing orders and ordering a home delivery service through the form on the website, became temporarily unavailable.

On July 30, KDL announced that hackers had attacked the company’s website. In order to avoid leakage of customer data, the company temporarily disabled some functions of the site. KDL experts assured that the passport data of clients were not affected. The organization for investigating violations in IS was connected to the investigation of the incident at the company, and Roskomnadzor was also informed about the attack. It is still unclear about the data leak, as the RKN has to start its investigation in this case. In the case of detection of the fact of leakage of the RKN, it can draw up and submit to the court an administrative protocol according to Part 1 of Article 13.11 KpAP. In this case, violation of the legislation in the field of personal data of KDL threatens with an administrative fine in the amount of 60 thousand rubles to 100 thousand rubles.

KDL clarified that the company’s website was hacked “with further information about the leak of personal data broadcast by the attackers.” To prevent the leak, the company decided to temporarily disable some site functions and internal services for a while, and the company’s specialists began working on restoring network services.

What happened?

Our systems were hacked, attackers broadcast information about the leak of personal data. An investigation is underway, according to our experts, the personal medical data and passport data of the patients were not affected.

What did you do?

They reacted appropriately. In order to quickly make changes to the operation of services, it was decided to temporarily disable some functions of the site. The verification of information about the leak of personal data of KDL customers has been initiated and a notification has been sent to Roskomnadzor (RKN). The IT team of our KDL network is conducting operational work, as of now, the compromised services have been isolated.

“Customer trust is the most important value for us, so we took this incident very seriously. Unfortunately, nowadays, no company that works with personal data can be immune from cyberattacks by attackers. The team’s professionalism is evidenced by its ability to promptly respond to threats and solve emerging problems. At present, measures have been taken to actively protect the KDL information system,” explained Yuriy Leonov, general director of the KDL federal network of medical laboratories.

All our offices work as usual, analyzes are performed within the specified time. There are temporary difficulties with viewing the results through the site and accessing the personal account, but you can get the results of the tests in the medical office or by writing to us in private messages, we will promptly request the medical department of the status of the order or send the results to the order.

“Thank you for your understanding and we apologize for the inconvenience,” KDL said.

KDL has 13 laboratories and more than 300 medical offices in various regions of Russia. The network is part of the Medscan group of companies.

Related posts