Telegram has removed bots that were allegedly exchanging confidential data related to Star Health and Allied Insurance corporate, according to a corporate statement. The messaging platform has reaffirmed its commitment to data protection, noting that the bots were instantly deactivated and that moderators are now monitoring for any recurrence of similar activity.
In response to Star Health's legal notification about bots spreading compromised customer data, Telegram has reiterated its proactive actions to prevent the distribution of private information on its network. In a recent statement, Telegram stated that it has destroyed the bots in issue and will continue to closely monitor any potential recreations. The platform stated that revealing personal information is strictly banned, and that hazardous content is promptly removed once discovered.
The data breach includes personal information like as cell phone numbers, addresses and pre-existing medical issues for approximately 31 million Star Health users. The breach was discovered on 20 September, 2024, when UK-based researcher Jason Parker disclosed that a hacker known as xenZen had created a website that displayed the exposed data. As per the hacker, a senior official at Star Health allegedly sold the consumer data, resulting in a significant security violation.
Telegram responded to these charges with a note headlined "Is Blaming the Intermediary the New Norm in Data Breach Incidents?", implying that Star Health may be attempting to transfer responsibility to Telegram and Cloudflare. Telegram said on 27 September, 2024, that the original bots had been eliminated, as well as 90 per cent of the damaging content associated with this breach, as part of a larger cleanup.
Star Health has since undertaken a detailed forensic investigation overseen by independent cybersecurity specialists. The corporation has also obtained a judicial injunction from the Madras High Court requiring third parties to block access to the disclosed data. Star Health continues to collaborate with government officials and regulatory entities to ensure that the problem is fully resolved.
Despite these efforts, the hacker has apparently switched to self-hosted platforms, making it increasingly difficult to fully remove the disclosed data. The hacker claimed that Star Health's Chief Information Security Officer (CISO) had initially sold the data before attempting to modify the terms of the agreement. Star Health has refuted these charges, noting that the CISO is fully working with the inquiry and that no wrongdoing has been discovered on his behalf thus far.
