Slavia Pojišťovna, a prominent insurance provider based in the Czech Republic, has allegedly suffered a significant data breach resulting in the exfiltration of approximately 150GB of sensitive information. The compromise reportedly occurred through a vulnerability sequence involving Adminer, which allowed an unauthorized party to deploy a webshell and maintain a reverse shell for data extraction. The threat actor claims that access to the network is currently maintained.
According to the allegedly compromised data samples and claims, the leaked information includes:
-
Internal insurance documents and policies
-
Accident and claims (“sinisters”) reports
-
Direct communications between clients and the insurer
-
Medical records and health documentation (including ultrasound imagery)
-
Customer database entries (names and email addresses)
-
Password-protected files (reportedly utilizing the insured individual’s Date of Birth as the password)
Daily Dark WebRead More
R1
T1
