DLBI: Hemotest Medical Laboratory Client Data for Sale on the Darknet

Data Leakage & Breach Intelligence (DLBI) specialists have warned that a database containing client information from the Hemotest medical laboratory has been put up for sale on the darknet. According to the seller, the database contains 31 million records, including full names, dates of birth, addresses, phone numbers, email addresses, passport series and numbers, and more.

Researchers report that this database first appeared in a closed circle in early spring 2022. DLBI notes that the actual number of records in the dump is slightly less than claimed—about 30.5 million—and that the data was obtained due to a vulnerability in Hemotest’s IT system.

“Judging by the sample data provided by the seller, this database was exported no earlier than April 22, 2022, which may indicate that the vulnerability is still open,” the experts write.

Additionally, another post by a different user appeared on the same hacker forum, offering a database of Hemotest laboratory orders (tests), as well as information about the vulnerability used to access the server. According to the seller, this database contains 554 million orders, including full names, year of birth, order date, and order details.

Hemotest representatives have not yet commented on these potential data leaks.