Over the weekend, Northern Irish health trusts were on high alert after the XP95 hacker group claimed to have accessed hundreds of thousands of files.
Healthdaq, a recruitment platform used by Northern Ireland’s health trusts, has reportedly suffered a cyberattack by the emerging hacker group XP95, which claims to have accessed hundreds of thousands of sensitive files. The incident has raised serious concerns around data security within healthcare recruitment systems, particularly given the volume and sensitivity of the information involved.
The company, headquartered in Dublin with offices in Belfast, Toronto, and Melbourne, has not publicly responded to inquiries. However, reports indicate that Healthdaq’s data protection officer confirmed the breach in an internal communication, stating that unauthorized access to data stored on its platform was detected on March 30 and has since been contained.
According to the communication, the breach involved the extraction of highly sensitive personal data, including names, contact details, CVs, government identification documents, and in some cases, health-related information. The nature of the compromised data significantly increases the risk of identity theft, financial fraud, and other forms of misuse.
In response to the incident, Northern Ireland’s health trusts have issued warnings to staff, urging heightened vigilance against potential cyber threats. Employees have been advised to remain alert for suspicious communications or activity that could indicate follow-on attacks, such as phishing or impersonation attempts.
Healthdaq has confirmed that the breach has been reported to relevant regulatory and law enforcement authorities, including the Garda National Cyber Crime Bureau. The company is expected to cooperate with ongoing investigations as authorities assess the full scope and impact of the attack.
The group behind the attack, XP95, is a relatively new threat actor that has quickly gained attention for its targeted operations. Unlike traditional ransomware groups, XP95 does not rely on encryption-based attacks. Instead, it follows a data exfiltration and extortion model, where sensitive information is stolen and used as leverage to demand payment from victims.
In this case, XP95 is believed to have issued a ransom demand to Healthdaq. The group typically publishes proof-of-compromise samples and threatens to release or sell the stolen data if payment deadlines are not met. This approach increases pressure on victims while avoiding the operational complexities of deploying ransomware.
The incident highlights growing risks associated with digital platforms handling sensitive workforce and healthcare-related data. As cybercriminals increasingly target such systems, organizations are being urged to strengthen access controls, enhance monitoring capabilities, and implement robust incident response strategies.
With investigations ongoing and the full scale of the breach yet to be confirmed, the Healthdaq attack underscores the urgent need for improved cybersecurity measures across critical digital infrastructure supporting healthcare services.
Recommended Cyber Technology News :
- Rockwell PLC Exposure Raises Alarm Over Iranian Cyber Threats
- Cloud Storage Security Firm Launches DataDefender DSPM
- Booking.com Warns of Cyberattack and Data Breach Risk
To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com
