Health Ministry website allegedly targeted by Russian hackers, CERT-IN support sought

Cyber security experts from CloudSEK have claimed that the Russian hacker group ‘Phoenix’ targeted the website and managed to get access to the ministry’s Health Management Information System portal, which has details of all the hospitals of India and employees and physicians.

Also Read:Chinese hackers suspected behind AIIMS Delhi cyber attack

“We have sought details and asked the CERT-In to look into the alleged hacking of the health ministry’s website. They will submit a report,” an official source told PTI.

CERT-In is the national nodal agency for responding to computer security incidents and provides prevention and response services to government departments and private bodies.

According to a report by CloudSEK, the group mentioned that the attack is “a consequence of India’s agreement over the oil price cap and sanctions of G20 over the Russia-Ukraine war”.

“The motive behind this target was the sanctions imposed against the Russian Federation where Indian authorities decided not to violate the sanctions as well as comply with the price ceiling for Russian oil approved by G7 countries,” CloudSEK said.

“This decision resulted in multiple polls on the Telegram channel of the Russian Hacktivist Phoenix asking the followers for their votes,” it stated.

CloudSEK stated that Phoenix has been active since January 2022 and is known for phishing scams and has a history of targeting hospitals based in Japan and the UK, a US-based healthcare organisation serving the US military and DDoS attack on the website of the Spanish foreign ministry, among others.

As per CloudSEK, Phoenix is known for phishing scams. It has been active since January 2022. Previously, it has targeted hospitals based in Japan and the UK

Also Read:Haryana: Portal of district hospital hacked, 43 fake birth certificates issued