According to the threat actor’s post, the database includes comprehensive, personal patient information, including names, IDs, decision and national numbers, phone numbers, addresses, procedure classification details, diagnoses and details on the treatment. The hacker provided a sample of the dataset, encompassing data on 1000 people to support the claim.

Source: Infosecurity