Chennai-based Star Health Insurance, one of the country’s leading insurers, has been the target of a cyberattack, comprising sensitive information of over 31 million customers, with stolen data being sold online.
As legal action unfolds and an investigation continues, let's take a look at what we know about the incident, so far.
What happened at Star Health Insurance?
Star Health Insurance was targeted in a malicious cyberattack, which led to unauthorised access to sensitive data, including personal and business-related information.
The breach was first reported by Reuters news agency on September 24.
The data, which includes names, PAN details, medical records and policy information, was reportedly sold for $150,000, with smaller sets offered for $10,000.
“We acknowledge that we were the victim of a targeted malicious cyberattack, resulting in unauthorized and illegal access to certain data. We make it absolutely clear that our operations remain unaffected, and all services continue without disruption,” the company said on October 10.
What are the accusations made against Star Health Insurance’s CISO?
There have been claims, including an X (formerly Twitter) thread, suggesting the involvement or negligence of Star Health's chief information security officer (CSO) Amarjeet Khurana.
A hacker operating under the alias “xenZen” claims that the CISO directly sold access to sensitive data of over 31 million Star Health customers. The hacker has alleged that after the initial sale, the CISO requested additional money for continued access to the compromised systems.
What does Star Health have to say?
In a statement to Moneycontrol, Star Health firmly defended the CISO, saying, “We also want to categorically mention that our CISO has been duly cooperating in the investigation, and we have not arrived at any finding of wrongdoing by him to date.”
"We request that his privacy be respected as we know that the threat actor is trying to create panic."
What steps has the company taken in the aftermath of the data breach?
“A thorough and rigorous forensic investigation, led by independent cybersecurity experts, is underway,” the company said.
It has reported the breach to regulatory authorities and filed a criminal complaint.
It also approached the Madras High Court, which has ordered platforms such as Telegram and Cloudflare to block access to the leaked data.
The company has said its operations remain unaffected. “We have robust security measures in place and Star Health assures its customers and partners that their privacy and data security are paramount to us," it said.
What did the Madras High Court say?
The court on September 24 barred platforms such as Telegram and Cloudflare from displaying or sharing the data and directed them to takedown any bots or websites linked to the leak.
How has the market reacted to the breach?
Shares of Star Health & Allied Insurance Company dropped 2.5 percent in the morning trade on October 10, a day after the company acknowledged the cyberattack and data breach of more than 31 million customers.
At 1.12 pm, the Star Health stock was trading at Rs 566.05 on the National Stock Exchange, down 2 percent.
Discover the latest Business News, Sensex, and Nifty updates. Obtain Personal Finance insights, tax queries, and expert opinions on Moneycontrol or download the Moneycontrol App to stay updated!
Find the best of Al News in one place, specially curated for you every weekend.
Stay on top of the latest tech trends and biggest startup news.
