Data Security Crisis: 31 Million Star Health Customers Impacted by Breach

By: Bhumika Singh

|

Updated on: 10-Oct-2024

25,674 views

Follow Us:

25,674 views

Star Health Insurance, one of India's top health insurance providers, is currently dealing with a significant data breach that has reportedly impacted the personal information of approximately 31 million customers. The situation has raised serious concerns about data security and protecting sensitive information.

What Happened?

According to reports, a hacker known as "xenZen" claims to have stolen around 7.24TB of data from Star Health. This information includes highly sensitive personal details such as customers' names, PAN numbers, mobile numbers, email addresses, birth dates, residential addresses, policy numbers, and medical records. Alarmingly, the hacker is reportedly selling this stolen data online for $150,000, with smaller batches of 100,000 records offered for $10,000 each.

Allegations Against Star Health's CISO

In a shocking turn of events, the hacker alleged that Amarjeet Khanuja, Star Health's Chief Information Security Officer (CISO), played a role in the data leak. The claims suggest that Khanuja "sponsored" the breach by selling customer data to the hacker for $43,000. According to a whistleblower named Deedy Das, the timeline of the breach unfolded as follows:

• On July 6, 2024, Khanuja allegedly contacted the hacker through a secure messaging app after being referred by a middleman.
• They agreed on a price of $28,000 in cryptocurrency for the data.
• Khanuja reportedly provided the hacker with login credentials and API details, which allowed access to customer information.
• By July 20, Khanuja offered additional data for $15,000, and the process continued.
• After access was revoked, Khanuja demanded $150,000, claiming senior management wanted a share.
• When the hacker refused to pay, the data was listed for sale online, leading to the launch of a website called Starhealthleak.

Star Health's Response

Star Health has denied any involvement in the breach or the alleged sale of data. The company described the incident as a "targeted malicious attack" and emphasized that its operations remain unaffected. They are currently conducting a thorough investigation with the help of independent cybersecurity experts and working closely with authorities to secure customer data.

The insurer has also filed a criminal complaint against the hacker and the messaging platform Telegram, where parts of the stolen data were initially shared. Star Health reassured customers that their services are fully operational and that they are committed to protecting customer information.

Implications of the Breach

Data breaches like this can have serious consequences for those affected. Stolen personal information can lead to identity theft, where criminals misuse details such as PAN numbers or mobile numbers to create fraudulent accounts. This can result in financial fraud and scams, as scammers often exploit the leaked data to target victims. Additionally, compromised information can lead to phishing attacks or account takeovers, putting sensitive online accounts at risk. In extreme cases, extortion attempts may arise, leveraging leaked health information against victims.

As Star Health works to resolve this situation, the incident serves as a stark reminder of the importance of data security and the potential risks associated with breaches of this magnitude. Customers are encouraged to remain vigilant about their personal information and to monitor their accounts for any suspicious activity.