Telegram has taken firm steps against bots that shared sensitive data from Star Health and Allied Insurance Company. The company is actively monitoring to prevent these bots from resurfacing, according to a statement. Telegram removed the reported bots immediately and continues to monitor for any new ones. Sharing private information on Telegram is strictly prohibited, and such content is deleted when found.

Last month, Star Health issued a legal notice to Telegram, accusing it of hosting chatbots that distributed leaked data. Telegram has maintained its commitment to data privacy and is cooperating with the investigation. The company stated that blaming intermediaries like Telegram and Cloudflare for data breaches seems to be a growing trend.

Data Breach Details

On September 27, 2024, Telegram announced it had removed the initial two bots sharing this data upon discovery. Any new bots attempting to share similar information were likely removed in a large-scale sweep of Telegram's searchable content, which eliminated about 90% of harmful content. The breach involved personal data like mobile numbers and medical conditions of over 3.1 crore Star Health customers.

A UK-based researcher, Jason Parker, revealed that a hacker named xenZen had published a website showcasing sample data from Star Health. This included email communications with a top official responsible for managing the company's digital network. The hacker claimed the data was sold directly by Star Health.

Allegations Against Star Health

The hacker created Telegram bots to access data of over 31 million customers updated till July 2024 and more than 5 million claims available till early August. The hacker alleged that Star Health's Chief Information Security Officer (CISO) sold all the data but later attempted to alter their agreement terms.

Parker updated on October 3, 2024, that the threat actor has now self-hosted their data leak bots, making it nearly impossible to remove them permanently. In response, Star Health stated that an independent cybersecurity team is conducting a thorough forensic investigation.

Legal Actions and Investigations

Star Health approached the Madras High Court, which ordered all parties involved to disable access to the leaked information. The company is diligently working on implementing this order. They also clarified that the CISO has been cooperating with the investigation, and no wrongdoing has been found against him so far.

The ongoing investigation involves collaboration with government and regulatory authorities at every stage. Star Health remains committed to resolving this issue and ensuring data security for its customers.