Highly sensitive medical records including details of abortions, HIV tests and mental health issues have been leaked online after a major cyber attack.
Russian hackers attacked Stor-A-File in Britain. This data storage company serves GPs and NHS hospitals trusts. It also provides services for accountants and law firms.
The gang demanded a £3million ransom in Bitcoin cryptocurrency, but when Stor-A-File refused, the hackers dumped tens of thousands of files on to the ‘dark web’, a secretive part of the internet used by criminals and terrorists.
They include details of British women who were able to have abortions at British Pregnancy Advisory Service(BPAS) clinics. These include names, birth dates, telephone numbers, scans of foetuses, as well as phone numbers.
DEFIANT: Stor-A-File founders Simon Cockbill and Helen Cockbill were targeted
Another stolen record includes those with anorexia and addiction as well as erectile disorder.
The attack did not affect any NHS trusts, but it is clear that the NHS records were accessed by GPs.
Clop and Fancycat are hacking groups. They claim that the files stolen also include the names of British personnel stationed in Kuwait as well as people involved in intelligence. However, this cannot be confirmed.
The Ministry of Defence indicated that they were unable to comment during an ongoing investigation.
The Information Commissioner’s Office, which can impose multi-million pound fines on companies that fail to keep customers’ data secure, is also investigating, as is the National Crime Agency.
Philip Ingram, a former colonel in British military intelligence, said: ‘Private medical data, including deeply personal information relating to women’s abortions records, is the most shocking and awful breach you could imagine.
‘It shows again that these hacking gangs really don’t care who they hurt.’
Stor-A-File has 90 employees and was founded in 1977 by Simon and Helen Cockbill.
On September 2, the firm was alerted by staff who couldn’t log in to their computers. Onscreen messages demanding $4 million of Bitcoin were displayed, or that material be stolen, led to them discovering the attack.
Russian hackers attacked StorA-File in Britain, which is a data storage company that serves GPs and NHS hospitals trusts. (file photo).
A Stor-A-File spokesman said: ‘We believe it is irresponsible to deal with criminals and will only serve to perpetuate this kind of activity. Police advised not to, under any circumstances.’
The spokesman added: ‘Our clients were informed once it had been established any of their data may have been compromised.
‘The National Crime Agency has been offering support and advice to some of those affected by this incident. We deeply regret any concern that may have been caused.’
Police believe Clop has also laundered £370 million of criminal money.
Spokesmen of Marie Stopes clinics said that they had contacted all the victims whose data had been compromised by hackers.