At the end of November . Hackers published in the so-called the Internet underground, who performed tests in one of the medical facilities that commissioned the analysis to ALAB. The criminals announced that they had much more data and would publish it on December 31.
More ALAB data leaked online. It contains ID numbers, contracts and remuneration
As reported by , on Wednesday another, even larger package of confidential information appeared online, containing over 100 GB of data from ALAB. It consists of several folders containing detailed information about the company’s activities, investments, costs incurred, as well as about ALAB’s employees and collaborators.
As the portal writes, the folder containing HR data, including that of several thousand people associated with ALAB, is particularly disturbing. The archive file, weighing over 27 GB, contains detailed data of 1,977 company collaborators, including their registered addresses, correspondence addresses, PESEL numbers and data regarding employment contracts or mandate contracts.
One of the files, with 3.7 thousand records, includes, among others: information on types of contracts, dates of their signing, job titles, job dimensions, remuneration amounts and data on bonuses and raises. In other folders of the archive, copies of mandate contracts with ALAB’s collaborators were also found, and they contain not only names and surnames and PESEL numbers, but also ID card numbers of the contractors.
As Niebezpiecznik.pl writes, the stolen data includes spreadsheets and 7zip packages protected with a password, so the data contained therein is not available to anyone viewing the archive. Interestingly, the files even contained notes on data protection training conducted by the company and scans of paper documents. The package also includes databases with research results that have already been published online.
Hackers claim to be in possession of much larger amounts of ALAB data
The RA World group is responsible for the attack, using a ransomware attack (e.g. stealing data and demanding a ransom for not publishing it). The hackers wrote in November that the publication of sensitive data was the result of the company’s “lack of willingness to cooperate.” The network of laboratories most likely refused to pay the ransom. It is not impossible that hackers – as announced – will publish the remaining data stolen from ALAB servers on December 31 this year. Criminals claim to have as much as 246 GB of company data.
Source: Gazeta
Mabel is a talented author and journalist with a passion for all things technology. As an experienced writer for the 247 News Agency, she has established a reputation for her in-depth reporting and expert analysis on the latest developments in the tech industry.
