Health data hack: the victims will be warned, how to act?

Ten days ago, the newspaper Liberation revealed the naked medical and administrative data of more than 490,000 French, including 350,000 Bretons.Data recovered by internet hackers and broadcast on the "Dark Web".Two days after these revelations, the Paris prosecutor's office seized the file and opened an investigation.

The email addresses of 12% of the targeted patients would have leaked

For its part, the National Commission for Data Protection (CNIL) has launched controls.This Thursday, March 4, she indicates that she had asked, through the Paris judicial court, the blocking of a site hosting hacked health data.The 28 -laboratories' patients were collected by the pirates.

According to journalist Jean-Marc Manach, less than 12% victims saw their email address disclosed.However, since the revelation of this affair, some feel completely lost.Philippe, a Morbihannais, manages a Facebook page that welcomes the potential or proven victims of this leak."People have a lot of worries and doubts. They wonder what will happen to them, against whom they can and must turn around. All this is very vague."He and his wife were victims of hacking, this is in any case what the site posted to them online by the Aceis company, a few hours after revelations in the press.A site disabled this Thursday, March 4.

All laboratories have reported themselves to the CNIL

"We made this choice because the laboratories take over to inform their customers and moreover this site, even if it did not collect any data, flirted between the legal and the illegal. Faced with the recommendations of the CNIL we preferred theClose, "explains Yves Duchesne, Managing Director of Aceis.The boss also ensures that the information provided by his site was reliable."Contrary to what I can read here and there, the data was correct."

@Clcnature Students Learning How To Extract Lymph Nodes from Deer.These Students will be Manning the Mandate CWD… https://t.co/y0di1x6cfn

— CLC NaturalResources Thu Oct 04 12:15:05 +0000 2018

Who to believe?On the Internet, many Bretons share their doubts.If your data has been hacked you should know it very quickly.To date, all the targeted laboratories have reported to the CNIL.Its mission is now to turn to their patients."All those concerned will personally receive a letter from our part to explain to them what happened and how they can protect themselves," says Olivier Kerrand, the president of Ocealab who has seven laboratories in Morbihan.Some 121,669 patients in his laboratories are affected by data leakage.

A letter will be sent to the people concerned

Since last Tuesday, a crisis unit has been activated in his business.Staff has been hired to respond to the thousands of emails that filled the laboratory messaging.The standard has been exploding for a week."We have mobilized very big means to reassure the patients and answer them but they must understand that the task is colossal. We are doing the best. The letters will leave next week."The business manager also got closer to a specialized law firm and decided to file a complaint against X. In Pontivy, the Biopole laboratory also initiated this approach.

The instruction is clear, if you do not receive a message from your laboratory, it is useless to go and file a complaint with the gendarmes or the police.Otherwise, you can go to the police station or the gendarmerie with the document received and explain your approach."We have transmitted information in the brigades so that the complaints are taken into account," we confirm on the side of the Morbihan gendarmerie group.It is also possible to write to the public prosecutor of the tribunal de grande instance of your home.

Several possible steps

Why file a complaint?According to several lawyers that we have contacted, it is possible to file a complaint against X, in particular on the basis of article 226-17 of the penal code for lack of data security.The laboratories point the finger at the company Dedalus, publisher of the software with which they were equipped, but the survey diligent by the Paris prosecutor's office will say who is responsible.According to several specialists, laboratories could also be implicated for their negligence.

"However, you should not have many illusions, unless one action carried out by a group of people, there is little chance of hoping for something from justice. If damages it was toTo be there, they would be around a hundred euros, "details lawyer Bernard Lamon, specializing in intellectual property law.It is also possible to take administrative procedures with the CNIL.

The data collected could be used for ill -intentioned people.In the event of identity theft or scam, it is obviously necessary to file a complaint.In recent weeks, some Bretons have also noticed attempts at phishing in their messaging.

"For 15 days, I have received a lot of very strange emails from banks, various companies, Paypal, who ask me to regularize situations," says Manuela, a Morbihannaise.As a precaution, victims are recommended to modify the passwords of its various accounts.You will find many tips on the CNIL website.