Star Health Clears CISO in Data Leak, Blames Fabricated Evidence

The Indian insurance company Star Health and Allied Insurance announced there is no evidence implicating the Chief Information Security Officer in the recent data leak incident. The company determined that the alleged correspondence between the hacker and the security executive was fabricated by the perpetrator.

In August, Star Health faced a serious security breach—stolen client data, including medical reports, became publicly accessible via chatbots on Telegram messenger and various websites.

In response to the incident, the insurance company filed a complaint with local law enforcement regarding unauthorized access to data and initiated an investigation. Additionally, Star Health brought a lawsuit in an Indian court against Telegram and the hacker, seeking the removal of confidential information from online platforms.

As of Monday, the company reported positive results from the measures taken—websites where the hacker posted the stolen data, as well as Telegram chatbots created by the perpetrator, have been blocked.