Data breach Alert ☠️

[chathura414]

Data breach Alert

ලංකාවේ රාජ්‍ය පරිපාලන, පළාත් සභා සහ පළාත් පාලන අමාත්‍යයංශයේ නිල වෙබ් අඩවිය (හෝ අමාත්‍යයංශයේ System) එක හරහා ලබාගත්ත රාජ්‍ය සේවකයන්ගේ දත්ත Dark web වල විකුණන්න දාල තියෙනවා කියල Dark web Intelligence වාර්තා කරනවා.

https://pubad.gov.lk/ එක තමයි හැක් වෙලා තියෙන්නේ.

මේ විකුණන්න තියෙන ඩේට අතර,

Full names (first and last, initials)
Email addresses (personal and work)
Phone numbers (mobile, office, home)
Physical addresses (home and work)
National ID numbers (NIC)
Job titles and designations
Employer names and department details
Usernames and hashed passwords
User registration dates and last activity timestamps
Internal government circulars and service minutes (PDF files)

තියෙනවා. ඩොලර් 200ක මුදලකට රාජ්‍ය සේවකයින්ගේ තොරතුරු හැකර්වරු අතට පත් වෙනවා. මේක තවම unconfirmed. නමුත් Source කීපයකින්ම මේක වාර්තා කරනව.

Threat Actor - wh6ami තමයි මේක වාර්තා කරන්නේ.

රාජ්‍ය සේවකයින් ඉදිරි කාලයේදි Phishing Attack වලට අහු වෙන්න පුළුවන් මේ නිසා.

Sources - https://www.facebook.com/share/p/1BWH3fz1wg/

 

[PK Amaris]

baduma thamay

 

[Don GasCan]

මරු ගන්න ඕනේ , ඕකුන්ගේ otp උස්සල තව ගේමක් දෙන්න පුලුවන් .

 

[Anathai]

hukanawa mage ETF eka

 

[Erzo]

Age 18 - 35 kellonge address witharak ganna beida mata ungen?

$500 dennam.

10 denekta hikuwath made $500ta

 

[Thilina123]

‘hashed passwords’ මේකත් සතුටට කරනාවක්. Plain text save කරලා නෑ

 

[Shion Yumi]

Age 18 - 35 kellonge address witharak ganna beida mata ungen?

$500 dennam.

10 denekta hikuwath made $500ta

government ayama wenna oneda ?
private sector eke un awulda ?
$250ta karamu

 

[Erzo]

government ayama wenna oneda ?
private sector eke un awulda ?
$250ta karamu

A me government da? Private thama ona.

Issella sample tikak pm karapan balanna.

 

[Phone Hora]

හාන්ස් සර් ඉද්දී ඕවා කරන්න වෙන්නේ නෑ බ්‍රෝ....

 

[Sri_Sampath]

ඕව එංගලන්තෙත් වෙනවා

 

[Nidarshana_k]

එක පාරක් මුලු ආමි බේස් එකක Email / cloud drives ඔක්කොම ලීක් උනා DWeb එකේ. කවුරුත් දන්නෙ නෑ. මන් ඕක අර Slvlog පොන්නයින්ටත් යැව්ව. බැලුවෙ වත් නෑ. මම සාම්පල් එක්කම යැව්වෙ

 

[Sri_Sampath]

Damage Caused​

In a news and press release on Synnovis’ website (Synnovis, 2024), it was revealed that almost all their IT systems were affected, resulting in widespread disruptions to pathology services. The cyberattack led to the encryption of critical data, immediately impacting patients relying on NHS services at King’s College Hospital NHS Foundation Trust, Guy’s and St Thomas’, the South London and Maudsley NHS Foundation Trust, as well as GP services across the boroughs of Lambeth, Lewisham, Greenwich Bromley, Southwark, and Bexley. This incident forced Synnovis to revert to paper-based and manual processes for analysing medical samples, significantly reducing their operational capacity and delaying diagnostic services.

In an article published by the BBC (Tidy, 2024), it was reported that the Qilin threat actors shared nearly 400GB of private information acquired on their darknet website. Samples of the data reviewed by the BBC’s cyber correspondent include descriptions of blood tests, patient names, dates of birth, and NHS numbers. The cyberattack disrupted over 3,000 GP appointments and more than 800 planned operations. Critical services, including cancer treatments and organ transplants, were also affected. Furthermore, according to (Casey,2024), the data published by the Qilin group also included business account spreadsheets containing financial arrangements between Synnovis, GP services, and other hospitals.

In another article published by ComputerWeekly (Skelton, 2024), it was reported that during the second week following the attack, between June 10th and 16th, 2024, more than 1,294 outpatient appointments and 320 scheduled operations were postponed at Guy’s and St Thomas’ NHS Foundation Trust and King’s College Hospital NHS Foundation Trust. Overall, the cyberattack led to the cancellation of more than 1,134 operations.

According to a news report by (Pilditch, 2024), it was revealed that the Qilin Russian threat group attempted to extort over £40 million after infiltrating Synnovis systems. The incident is now considered one of the largest cyberattacks in the UK, affecting services valued at over £1 billion that are essential for the smooth functioning of the NHS.

Press enter or click to view image in full size

A screenshot from Qilin’s darknet leak site displaying information related to a data breach involving Synnovis (Tidy, 2024).
In the immediate aftermath of the Synnovis cyberattack, delays in medical test processing created a significant backlog, forcing healthcare providers to prioritise urgent cases, while non-urgent services faced further delays (HealthManagement.org, 2024). According to an NHS news release (NHS, 2024), Synnovis had ensured that unprocessed test samples were safely stored in their labs. However, due to the time that had since passed, some of these samples became unsuitable for analysis and had to be discarded. Furthermore, (Shekhar, 2024) reported that the NHS Blood and Transplant service urged individuals with O-negative and O-positive blood types to donate blood as soon as possible, to mitigate the impact of disrupted blood matching tests across London hospitals.

 

[Mr.Curious]

එක පාරක් මුලු ආමි බේස් එකක Email / cloud drives ඔක්කොම ලීක් උනා DWeb එකේ. කවුරුත් දන්නෙ නෑ. මන් ඕක අර Slvlog පොන්නයින්ටත් යැව්ව. බැලුවෙ වත් නෑ. මම සාම්පල් එක්කම යැව්වෙ

dump ekak gattada ?

 

[Nidarshana_k]

dump ekak gattada ?

Ou sample dump ekak thibba 2GB.
mn passe delete karla damma. Okkoma wage thibbe Emails/ Attachments

 

[HKavinda]

හොඳ වැඩේ
ඕකුන්ට නම් කෙලම වෙන්න ඕනේ කැරි අයිස් බල්ලෝ

 

[Hankook]

Age 18 - 35 kellonge address witharak ganna beida mata ungen?

$500 dennam.

10 denekta hikuwath made $500ta

ubata ganu one nam pm ekak dapan supiri kramwyak mn karanwa me tike

 

[Mahesh Wanasinghe]

 

[SK29]

bimp

 

[Tramadol]

මරු ගන්න ඕනේ , ඕකුන්ගේ otp උස්සල තව ගේමක් දෙන්න පුලුවන් .

ube amma mata kelinma otp eka forward karanawa ponnayo
ehema ewala thamai rata awilla mage walla suppu kara kara nida ganne

 

[6h057]

---

------ Post added on Apr 19, 2026 at 1:58 AM