The personal data of nearly 150,000 customers and employees of two hearing and speech centres in Hong Kong has been leaked after a ransomware attack, the privacy watchdog has said.
On August 22, Widex Hong Kong Hearing and Speech Centre and its subsidiary Starry Hearing and Speech Centre revealed they fell victim to a ransomware attack on July 5 that encrypted their internal system data and impacted their applications.
The breach potentially exposed customers’ sensitive information, including their names, dates of birth, gender, addresses, phone numbers, audiologists and hearing device records. But the centre did not disclose the number of people affected.
Hong Kong’s Office of the Privacy Commissioner for Personal Data said on Monday it received the company’s data breach notification on July 30.
Founded in 1956, Widex is a Denmark-based firm that specialises in hearing aids and related services. It offers a range of hearing devices designed to help people with hearing loss.
The privacy watchdog has said the attack might have exposed the data of about 148,000 customers. Photo: Jelly Tse
It also provides services such as hearing tests, speech therapy and tinnitus care.