Cyber Incident Victim: Anhui Women and Children Health Hospital
Date:
Jul 2016
Location:
China
Summary
Hackers breached a hospital's system in Anhui province, stealing nearly 6,000 private videos of newborn babies recorded for parental monitoring purposes. The footage was uploaded to a Chinese video-sharing platform under the hospital's name before being removed following a takedown request. While parent data reportedly remained uncompromised, cybersecurity experts speculated the intrusion may have been an inexperienced hacker's practice attempt rather than a financially motivated attack. The incident highlighted systemic vulnerabilities, with professionals noting inadequate security measures across many Chinese websites and organizations prioritizing user experience over robust defenses. Public concern arose over both the privacy violation and inappropriate advertisements displayed alongside the infant videos on the hosting platform. Authorities were notified, though broader challenges persist regarding fragmented personal information protections and insufficient corporate data safeguards in China.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
In July 2016, hackers breached systems at Anhui Women and Children Health Hospital in Hefei, China, stealing approximately 6,000 private videos of newborn infants recorded as part of a parental monitoring initiative. The hospital publicly acknowledged the incident through a WeChat post on July 11, issuing an apology to affected families and confirming a police report had been filed, though the post was subsequently deleted. The attackers uploaded the compromised footage to Chinese video-sharing platform 56.com under the hospital's official name, where the content remained publicly accessible until the hospital requested its removal on July 11. Platform administrators deleted all infant videos that same day. While the hospital asserted no parental personal information was compromised during the breach, it provided no technical details about the attack vector or duration of system compromise. Multiple attempts by Sixth Tone to contact hospital representatives for additional information on July 12 received no response.
Security experts cited in media reports characterized the incident as symptomatic of widespread cybersecurity deficiencies in Chinese institutional systems. Beijing-based web security specialist Wang Yingjian noted many Chinese organizations prioritize user experience and interface design over fundamental security protections during system development. An anonymous hacker using the alias "system_gov" suggested the breach likely represented practice attempts by inexperienced actors rather than financially motivated exploitation, given the non-commercial nature of the content. Public confusion emerged on Weibo regarding the attackers' motivations for targeting infant footage. The incident occurred against a backdrop of escalating cybercrime impacts, with an Internet Society of China report estimating $13.7 billion in annual losses from information security incidents during the preceding year. This breach followed a separate May 2016 case in Jinan where perpetrators stole and sold personal data for 200,000 children. Legal experts highlighted China's fragmented personal information protection framework, noting stalled legislative progress on a comprehensive data protection law first drafted in 2005 but never implemented.