Australian sufferers’ well being and private data has reportedly been printed on-line by following the ransomware assault on medical prescriptions supplier MediSecure.
The Melbourne-based firm confirmed on Might 24 {that a} knowledge set containing the private data and restricted well being knowledge of its clients has been posted onto a darkish net discussion board by a cybercriminal group.
MediSecure is now urgently working in direction of notifying impacted people.
In a press release on X (previously Twitter), Australia’s Nationwide Cybersecurity Coordinator, Lieutenant Basic Michelle McGuinness, mentioned the federal government is conscious of a dataset purporting to be from the MediSecure breach, together with a pattern of the information.
She mentioned the federal government is working with MediSecure to confirm that the information has been printed on-line, which is at the moment believed to be affecting “a comparatively small group.”
McGuiness warned Australians not to search around for this knowledge, as accessing delicate or private data on the darkish net promotes the enterprise mannequin of cybercriminals.
“Whereas that is an unwelcome growth, I wish to once more guarantee Australians that if people are prone to severe hurt by the publication of their data, then we are going to work with MediSecure to ensure that people are appropriately knowledgeable, so they might take steps to guard themselves from any additional danger to their private data,” McGuiness wrote.
MediSecure revealed earlier in Might that its programs had been compromised because of an assault on a third-party provider. The agency admitted that the incident had impacted the private and well being data of consumers.
In an incident replace by MediSecure on Might 18, the agency confirmed the assault pertains to knowledge held by MediSecure’s programs up till November 2023.
This impacts private data and restricted well being data referring to prescriptions, along with the private data of healthcare suppliers.
MediSecure confirmed that the incident just isn’t affecting any ongoing entry to treatment.
MediSecure Knowledge for Sale for $50,000
Hacktivist tracker and intelligence group CyberKnow posted a screenshot of the information leak on X, which purports to indicate a pattern of the stolen data, and the creator providing over 6.5TB of information on the market for $50,000.
It appears to be like like somebody is claiming to have the Medisecure knowledge and is attempting to promote over 6.5tb of information for $50,000.
It is unconfirmed at this stage if that is the precise knowledge leak. Contemplating it was reporting as a possible ransomware incident and now this sale is being provided… pic.twitter.com/rvj2yTAcPi
— CyberKnow (@Cyberknow20) May 23, 2024
CyberKnow added that it was fascinating the sale is being provided by way of a discussion board quite than a ransomware leak web site, given the incident has been reported as a possible ransomware incident.
