how do you know if you are affected?

AMELI, the Health Insurance website has been hacked. In total, the data of more than a million French men and women ended up in nature

The incidents follow one another and look alike for Health Insurance. Selo, the ZATAZ monitoring service, more than a million French people have seen their personal data leaked this week. In question, a vast hacking operation on the AMELI website. All of the stolen information is now for sale.

How it is possible ?

Flaws on the AMELI platform are not uncommon. After private messages and letters, this time it is the turn of personal information to be hacked. On a hacker forum, our colleagues from ZATAZ discovered that an ill-intentioned individual had put up for sale a huge database, comprising more than one million username and password combinations for the French health insurance platform.

For the moment, the hacker has not detailed how he managed to get his hands on this huge database. The most logical hypothesis remains without doubt the massive phishing campaign, but the exploitation of a 0-day flaw cannot be ruled out either. Remember that unlike other online services, the AMELI site brings together users with various profiles, some of whom are not familiar with the methods adopted by cybercriminals.

Why is this worrying?

In addition to being massive, this new data leak is also particularly sensitive. The information stored on the Health Insurance website concerns both exchanges with practitioners, as well as details on possible pathologies and bank reimbursement details. Disclosing them could therefore have a significant impact for the persons concerned, and cause many identity thefts, embezzlement and theft of personal data subsequently.

Especially since the pirate does not ask for a huge sum for this highly sensitive discovery: barely 6000 dollars, or around 5700€ for all the information collected.

How do you know if you are affected?

© Journal du Geek

The most likely hypothesis regarding this attack is that it comes from a phishing campaign. You should therefore first check that you have never responded to a Suspicious SMS or email from the organization during the past few months. As a precaution, we also advise you to immediately change your passwords to prevent potential hackers from having access to all of your data, and – for example – from ordering the reimbursement of your treatment on an account belonging to them.

Finally, be sure to carefully monitor the activity of your AMELI account in the weeks and months to come. It remains to be hoped that the Health Insurance will finally take measures to strengthen the security of its accounts. Last March, a leak had already revealed the data of more than 500,000 users.

Bitdefender Plus Antivirus
Bitdefender Plus Antivirus

By: Bitdefender

Leave a Comment