Customer data of Star Health publicly available on Telegram

• Data have been taken down multiple times by Telegram but new ones keep resurfacing.
• Indian authorities and Star Health are actively investigating, but affected customers have yet to be notified, further complicating the issue.

A major cybersecurity breach involving Star Health, India’s largest health insurer, revealed that sensitive customer data has been leaked and sold through Telegram chatbots.

The data includes private medical records, personal identification details, and insurance claims. Despite Star Health’s claims that “sensitive customer data remains secure,” Reuters reported.

The incident has escalated concerns over Telegram’s use as a platform for illegal activities, especially after its founder, Pavel Durov, faced scrutiny over the app’s role in facilitating criminal behavior.

The chatbots responsible for distributing Star Health’s stolen data have been taken down multiple times by Telegram, but new ones keep resurfacing, showing the app’s challenges in controlling misuse of its platform.

Raises serious concerns

This breach underscores the vulnerability of large companies to data theft and highlights the growing trend of using chatbots to sell stolen information. It also raises significant concerns for affected individuals whose sensitive data, like medical diagnoses and personal identifiers, is now exposed.

Indian authorities and Star Health are actively investigating, but affected customers have yet to be notified, further complicating the issue.

The case adds to the broader concern over data security in India, as the country emerges as a frequent target of such cyber-attacks.

Star Health’s response to the breach has been somewhat reassuring, with the company claiming that its initial analysis indicated “no widespread compromise” of sensitive customer data.

Nevertheless, the sheer volume of data purportedly accessed—7.24 terabytes relating to over 31 million customers—raises serious concerns regarding the sufficiency of their data security protocols.

The existence of these chatbots, which operated openly for weeks, demonstrates a significant lapse in oversight that allowed unauthorized access to critical information.

A persistent challenge

Moreover, the situation is exacerbated by recent scrutiny of Telegram’s ability to manage content on its platform. Following the arrest of Pavel Durov, the founder of Telegram, there is mounting pressure on the company to enhance its moderation and security practices.

Although Telegram has asserted that the sharing of private information is strictly prohibited, the ongoing appearance of new chatbots suggests a persistent challenge in enforcing these policies effectively.

The implications of this breach reach beyond the mere exposure of personal data. It emphasises the urgent need for stronger cybersecurity measures, especially within industries entrusted with sensitive information.

Organisations must adopt more rigorous data protection protocols and invest in advanced technologies to safeguard against breaches. In addition, there is an essential role for regulatory bodies to play in establishing and enforcing standards that protect consumer data across digital platforms.

The unauthorised acquisition and dissemination of customer data constitutes a grave violation of privacy rights and legal standards, gravely impacting both individuals and organizations.

Star Health reassures its customers and partners of its commitment to prioritising privacy while actively collaborating with law enforcement to tackle this criminal activity.

Sensitive data

On August 14, Star Health disclosed in a stock exchange filing that it was investigating an alleged breach involving sensitive claims data. The breach reportedly involved chatbots on Telegram, a platform that allows the storage and dissemination of large volumes of data anonymously.

These chatbots have been linked to the unauthorised distribution of customer information, including personal health records and diagnostic results, raising significant concerns regarding data security.

The incidents involving policyholders, such as Sandeep TS and Pankaj Subhash Malhotra, illustrate the human cost of data breaches.

Malhotra’s case, where confidential ultrasound and tax information was leaked, and Sandeep’s daughter’s medical records being circulated, signal a troubling trend. These individuals were not notified of the breaches, further exacerbating the situation and highlighting deficiencies in data privacy practices.

This issue is not isolated. A recent survey from NordVPN indicates that India accounts for the largest percentage of victims in a broader trend of data sales via chatbots, reflecting a growing cybercrime epidemic.