Hundreds of thousands of Dutch citizens have had their most sensitive personal information compromised after a cyberattack on Clinical Diagnostics, a medical laboratory in Rijswijk, Dutch media reported Monday. The hackers, identifying themselves as the group Nova, are threatening to release the stolen data unless their demands are met.
According to RTL Nieuws, Nova had previously received payment from the laboratory to prevent the disclosure of an earlier data theft. The group now claims the company “violated agreements,” potentially by involving law enforcement, and has issued a new ultimatum. A countdown clock posted on the dark web gives the company until the night of August 28 to comply. The hackers are demanding 11 bitcoins — roughly €1.1 million ($1.28 million).
The breach involves highly sensitive information from 485,000 women who participated in the Netherlands’ national cervical cancer screening program. Stolen data reportedly includes names, addresses, dates of birth, citizen service numbers (BSN), and in some cases, test results. Nova has already leaked data from more than 50,000 individuals, including results from other medical examinations such as vaginal, penile, urine, skin tissue, or wound fluid studies.
Read Also: Municipal Elections End In Libya, Counting Now Underway
According to the group, the total data stolen amounts to around 300 gigabytes, though only 85 megabytes — roughly 0.03% — have been posted online as a sample so far. The exposed information has sparked immediate concern among victims and privacy advocates, given the deeply personal nature of the material.
Cybersecurity experts warn that medical data breaches like this can have far-reaching consequences. Beyond the immediate risk of identity theft, such breaches can erode trust in healthcare systems and jeopardize the privacy of patients who rely on medical institutions to safeguard their most intimate records.
Dutch authorities are reportedly investigating the incident, and the lab is under intense pressure to contain the breach and prevent further dissemination of personal data. Meanwhile, Nova’s public threats underscore the growing sophistication and audacity of cybercriminals targeting sensitive health information — a stark reminder of the vulnerabilities in digital healthcare systems worldwide.
As the August 28 deadline approaches, the nation watches closely, aware that the fallout could affect hundreds of thousands of citizens whose personal health information now hangs in the balance.
