[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fswbqvUCWs2JEH9nO5QYjtRLcaHfFRvLKyqMTXjnGmos":3},{"lesson":4},{"id":5,"slug":6,"article_id":7,"title":8,"body":9,"prevention":10,"framework_refs":11,"status":19,"created_at":20,"published_at":21,"article":22,"tags":25},"ede15815-6ee4-4f30-987a-16d32b0bf526","colombian-health-authority-faces-escalating-data-breach-with-threat-of-additional-releases","8838de40-1af3-4b55-9973-d932d4457bba","Colombian Health Authority Faces Escalating Data Breach with Threat of Additional Releases","The Superintendencia Nacional de Salud de Colombia is experiencing an escalating cybersecurity incident where threat actors have released a second 8GB package of sensitive data and are threatening further releases. This represents a failure in incident response - the organization was unable to contain the breach after the initial compromise and prevent additional data exfiltration. The incident highlights how inadequate incident response can transform a single breach into an ongoing crisis with compounding damage. Healthcare organizations are particularly attractive targets due to the sensitive nature of personal health information and regulatory data they possess.","**Long-term improvements:**\n- This escalation could have been prevented through a robust incident response plan that included immediate threat containment, comprehensive forensic analysis to identify all compromised systems, and rapid implementation of additional security controls to prevent further data exfiltration\n- stronger data protection measures such as encryption, access controls, and data classification would have limited the impact even if systems were compromised\n\n**Detection measures:**\n- The organization should have implemented enhanced monitoring and data loss prevention measures immediately after the first incident, isolated affected systems, and conducted thorough security assessments of all related infrastructure",[12,13,14,15,16,17,18],"NIST IR-4","NIST PR.DS-1","CIS Control 11","CIS Control 13","ISO 27035","GDPR Article 33","GDPR Article 32","published","2026-03-28T08:51:12.981242+00:00","2026-03-28T08:51:12.908+00:00",{"id":7,"url":23,"title":24},"https:\u002F\u002Fx.com\u002FDarkWebInformer\u002Fstatus\u002F2037709267000533249","‼️🇨🇴 Package 2 of the Superintendencia Nacional de Salud de Colombia (Supersalud) breach has be...",[26,32],{"id":27,"name":28,"slug":29,"description":30,"color":31},"182e11d5-57c4-444e-8ec8-4682ad60261b","Incident Response","incident-response","Slow detection, poor containment, missing playbooks","#14b8a6",{"id":33,"name":34,"slug":35,"description":36,"color":37},"c8b843a5-d5a7-41d1-8d3b-cabded09d2ef","Data Protection","data-protection","Unencrypted data, missing DLP, poor classification","#3b82f6"]