Hacker demands $10M ransom for data

A hacker who claims to have stolen 8 million records from a database that tracks prescription drug abuse in Virginia is demanding a $10 million ransom for the information's return, according to media reports.

In a Roanoke Times article, Gov. Tim Kaine calls the incident "an intentional criminal act against the commonwealth by somebody who was trying to harm others." The FBI and Virginia State Police are investigating, the newspaper reported.

The breach involves the Virginia Department of Health Professions' (DHP) prescription drug-monitoring database. The department licenses health care providers in the state and tracks the sales of controlled substances.

The breach apparently happened April 30. According to Digital Journal, the hacker posted a note on WikiLeaks.org — a Web site devoted to leaking documents — demanding the ransom and threatening to sell the data on the open market if the state did not pay. Today was the deadline.

"I have your s@*t! In *my* possession, right now, are 8,257,378 patient records and a total of 35,548,087 prescriptions," the WikiLeaks note reads. "Also, I made an encrypted backup and deleted the original. Unfortunately for Virginia, their backups seem to have gone missing, too. Uhoh :("

However, DHP Director Sandra Whitley Ryals said the database has been properly backed up, Digital Journal reported.

Featured

  • Defense
    Ryan D. McCarthy being sworn in as Army Secretary Oct. 10, 2019. (Photo credit: Sgt. Dana Clarke/U.S. Army)

    Army wants to spend nearly $1B on cloud, data by 2025

    Army Secretary Ryan McCarthy said lack of funding or a potential delay in the JEDI cloud bid "strikes to the heart of our concern."

  • Congress
    Rep. Jim Langevin (D-R.I.) at the Hack the Capitol conference Sept. 20, 2018

    Jim Langevin's view from the Hill

    As chairman of of the Intelligence and Emerging Threats and Capabilities subcommittee of the House Armed Services Committe and a member of the House Homeland Security Committee, Rhode Island Democrat Jim Langevin is one of the most influential voices on cybersecurity in Congress.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.