Trending:
Star Health Data Breach: Hacker Alleges Top Executive's Role In Leaking Personal Details, Records Of Over 31 Million Customers
Star Health Insurance suffered a major data breach, exposing personal details of over 31 million customers. Allegations surfaced accusing the CISO of selling data.
Star Health Insurance suffered a major data breach, exposing personal details of over 31 million customers.
In one of India's largest cybersecurity incidents, personal data from Star Health Insurance – one of the country’s top health insurers – has been exposed, impacting over 31 million customers. The stolen information includes names, addresses, phone numbers, tax details, and even medical records. The breach reportedly involved a hacker, who claimed that Star Health’s Chief Information Security Officer (CISO) Amarjeet Khanuja sold the data for $150,000. A viral social media post from Deedy Das, a venture capitalist at Menlo Ventures, added to the controversy by sharing an alleged email exchange between Khanuja and the hacker.
Data Breach and Allegations
The hacker behind the breach allegedly sold sensitive data through Telegram chatbots, allowing users to access policy details, claims information, and even medical diagnoses. According to Das' post on X (formerly Twitter), the hacker accused Khanuja of attempting to profit from the data sale. Screenshots of the email exchange shared by X user @leading_nowhere claim that Star Health employee even offered illegal API access to customer medical records. Originally, the deal was settled for $43,000, but the official later demanded $150,000, allegedly claiming that a portion had to be paid to senior management to continue the data leak, according to the hacker.
Star Health has clarified that their Chief Information Security Officer (CISO) has been fully cooperating with the ongoing investigation, and no evidence of wrongdoing has been found against him so far.
A video of an email conversation revealed the email ID of a senior company official. The footage also showed exchanges both through email and an instant messaging platform between a hacker, identified as xenZen, and the official, discussing the terms of the deal.
Star Health Insurance had earlier filed lawsuits against both the messaging platform Telegram and the US-based software firm Cloudflare, accusing them of facilitating the data leak. The Madras High Court recently issued a temporary injunction, ordering Telegram to block any chatbots distributing the leaked information. The court is set to hold a follow-up hearing on October 25, while Star Health continues to work with law enforcement to address the situation.
What Was Leaked?
The stolen data included personal details like names, phone numbers, and addresses, along with more sensitive information such as tax details, ID card copies, test results, and medical diagnoses. Star Health acknowledged the breach but downplayed its severity, claiming there was “no widespread compromise” and assuring customers that their data remains secure.
As this breach raises significant concerns over customer privacy, Star Health continues to face mounting scrutiny over its data protection practices.
Get Latest News Live on Times Now along with Breaking News and Top Headlines from Technology Science and around the world.
Trending:
Shubham Arora author
Shubham is a passionate tech enthusiast whose world revolves around smartphones and gadgets. His love for gizmos and gaming is plausible. Beyond his t...View More
End of Article
Subscribe to our daily Newsletter!
Pixel 9 Pro Review: Expensive, Yet The Google Phone To Buy In 2024
OnePlus 13 vs iQOO 13: Launch Date, Price In India, Specifications, Latest Leaks
Aadhaar Card: How To Update Your Mobile Number On Aadhaar, A Quick Guide
WhatsApp Is Adding This Cool Instagram-like Feature To Status Updates: All You Need To Know
1100-ft 'God of Chaos' Asteroid Apophis To Collide With Earth In 2029? Here's Everything You Need To Know