Massive UK NHS Data Leak Exposes 31,000 Records
A massive data breach has hit the UK NHS, exposing sensitive information from 31,000 records, including emails and one-time passwords. Learn more about the risks and how to protect yourself. #NHS #CyberSecurity #DataBreach
On July 27, 2023, a significant data breach involving the UK's National Health Service (NHS) was reported on a notorious cybercrime forum by a user identified as "IntelBroker." The breach allegedly affects around 31,000 individuals and includes sensitive information, such as one-time passwords, email addresses, and potentially some accounts associated with government (.gov) emails.
Breach Details
- Date of Breach: July 27, 2023
- Threat Actor: IntelBroker (a known cybercriminal operative on BreachForums)
- Data Compromised:
- One-time passwords (OTPs) used for Care Identity Authentication.
- Email addresses, including those with .gov domains.
- Potential account information linked to the NHS.
- Leak Size: The attacker claims the leak contains information from approximately 31,000 individuals, although another mention within the post suggests a figure of 11,000.
Threat Actor Profile
IntelBroker is an active member of BreachForums, a site known for trading and exposing sensitive data. With 1,600 posts and over 4,000 points of reputation, IntelBroker has a history of involvement in significant data breaches. The user claims ownership of the NHS data leak, further establishing their credibility within this illegal online community.
