Hackers have released Australian health records on the dark web
Names, dates of birth, addresses, passport numbers and information on medical claims were among the sensitive personal data released anonymously early Wednesday morning.
Medibank said more leaks are likely.
“The files appear to be a sample of data that we have previously identified as having been accessed by the perpetrator,” the company said in a statement to the Australian Stock Exchange.
“We expect the perpetrator to continue to post files on the dark web.”
Medibank had previously refused to pay a ransom to stop hackers from leaking data, saying it could encourage further crime and would not ensure the security of the information.
“Based on extensive advice from cybercrime experts, we believe there is only a limited option to pay a ransom that will secure the return of our customers’ data and prevent it from being published,” said David Kochkar, head of Medibank.
The leaked data was posted on a dark web forum that cannot be found using normal web browsers.
“We will continue to release the data piecemeal,” the alleged hackers said on the forum.
“In retrospect, the data is not in a very understandable format, it will take us some time to sort it out.”
The AFP’s assistant cyber command, Justin Gough, said the “criminal or criminal groups” responsible for the hack may be operating outside Australia.
Australia’s assistant treasurer Stephen Jones said they were “rogues” and “fraudsters”.
“We must not give in to these scammers,” he told Sky News Australia.
“The moment we fold, it gives the green light to scumbags like them around the world that Australia is a soft target.”
The security breach has already wiped hundreds of millions of dollars off Medibank’s market value, with the company’s share price down more than 20 percent since October.
#Hackers #released #Australian #health #records #dark #web