Anonymous hacks iDental and cancels the debts of its clients

The company denies Innova + access to its payment gateway

   A few weeks ago it was the Spanish Center for Reprographic Rights, a few months before the Chamber of Commerce of Madrid and before them El Corte Inglés. These have been the penultimate 'victims' of La Nueve, a group of hackers linked to Anonymous.

The last objective of this group has been iDental. "We have entertained ourselves by canceling the debts from your payment gateway of the Banco de Sabadell, to which our most beginner scholarship holder has accessed through your website. What a job, is not it?" This is explained in his blog. An attack that the clinic itself has confirmed to Innova +.

"We do not know how much money we're talking about exactly, but it's about thousand euros," says La Nueve after the attack

   iDental was born in 2014 in Alicante under the brand iClinic and during these three years has managed to open a total of 26 centers throughout Spain and gain presence throughout the Peninsula. A meteoric expansion under the premise of 'low cost' products. However, this growth has been accompanied by numerous scandals to accumulate one in four claims by the consumer authorities.

The latest action of The Nine has allowed them, as explained on their website, to cancel large amounts of bills pending payment by customers. "We do not know how much money we're talking about exactly, but it's about thousands of euros," the attackers explain.

According to the attackers, the cancellation of the debts has occurred after accessing the iDental payment gateway through Banco Sabadell. "You will not miss them, but with them your patients can probably reach the end of the month for once," they comment in their post.

iDental has confirmed to Innova + the attack, but denies access to personal data of its customers and cancellation of payments

However, the dental clinic owned by Antonio Javer García Pellicerpor stresses to Innova + "that nobody has violated the security of access to internal systems, and therefore the consequences of this attack are non-existent."

The complaint of La Nueve is also addressed with the absence of protection of the data of the iDental clients. "Unfortunately for the company, we have penetrated to its very core.We are browsing between half a million patient records that the company does not provide their personal billing information but, oh, surprise !, are accessible," says La Nine. Although the communication department of iDental denies such access. "At no time was there any possible access to any economic data of a personal nature of any of the patients.

The attack began on Sunday evening, although, according to the group's blog, access to the dental clinic's payment gateway was quick. "Administrators with access to the payment gateway have passwords like (drum roll) 123456!" They complain.

At present, the systems of the company "are resestablicidos and has reinforced the security of the web", sentence from iDental.