Carding
Professional
- Messages
- 2,870
- Reaction score
- 2,511
- Points
- 113
Victims are offered free credit monitoring, but will it be enough?
Janssen Pharmaceuticals, a subsidiary of Janssen CarePath, has informed customers of its Janssen CarePath service that their sensitive information was compromised as a result of a data leak from IBM.
IBM is a technology service provider for Janssen. In particular, it manages the CarePath application and the database that supports its functions. Unauthorized attackers gained access to the following data of CarePath users:
This leak affected CarePath users who registered for Janssen's online services before July 2, 2023. This may indicate that the leak occurred on that date or that the compromised database was a backup. In any case, the information of customers who joined the service later was not stolen.
In addition, social security numbers and financial account information were not stored in the hacked database, so the damage was less significant than it could have been.
However, compromised data can contribute to highly effective phishing attacks, fraud, and social engineering, and given the value of medical data, it is highly likely that it will be sold for a lot of money on the darknet markets.
It is worth noting that this is not the first time that IBM data has been compromised this year. In June, it became known about the hacking of the popular MOVEit Transfer MFT service by Clop hackers, as a result of which data from hundreds of companies, including IBM, was stolen from the platform.
IBM issued a separate announcement about the incident, saying that so far there are no signs of misuse of the stolen data. However, the company encourages Janssen CarePath users to remain vigilant and carefully monitor their account statements for suspicious activity.
In addition, the tech giant offers free credit monitoring for a period of one year to all affected individuals to help them protect themselves from possible fraud.
Janssen Pharmaceuticals, a subsidiary of Janssen CarePath, has informed customers of its Janssen CarePath service that their sensitive information was compromised as a result of a data leak from IBM.
IBM is a technology service provider for Janssen. In particular, it manages the CarePath application and the database that supports its functions. Unauthorized attackers gained access to the following data of CarePath users:
- FCs;
- contact information;
- date of birth;
- health insurance information;
- information about medicines;
- information about your health status.
This leak affected CarePath users who registered for Janssen's online services before July 2, 2023. This may indicate that the leak occurred on that date or that the compromised database was a backup. In any case, the information of customers who joined the service later was not stolen.
In addition, social security numbers and financial account information were not stored in the hacked database, so the damage was less significant than it could have been.
However, compromised data can contribute to highly effective phishing attacks, fraud, and social engineering, and given the value of medical data, it is highly likely that it will be sold for a lot of money on the darknet markets.
It is worth noting that this is not the first time that IBM data has been compromised this year. In June, it became known about the hacking of the popular MOVEit Transfer MFT service by Clop hackers, as a result of which data from hundreds of companies, including IBM, was stolen from the platform.
IBM issued a separate announcement about the incident, saying that so far there are no signs of misuse of the stolen data. However, the company encourages Janssen CarePath users to remain vigilant and carefully monitor their account statements for suspicious activity.
In addition, the tech giant offers free credit monitoring for a period of one year to all affected individuals to help them protect themselves from possible fraud.
