Security News > 2022 > October > Medibank hack turned into a data breach: The attackers are demanding money
Medibank, Australia's largest private health provider, has confirmed that last week's "Cyber incident" has resulted in a data breach.
Medibank Group took action: they engaged cyber security firms and began "Isolating and removing access to some customer-facing systems to reduce the likelihood of damage to systems or data loss."
On Wednesday, it confirmed the attackers got in touch with claims they have stolen data from the company's systems.
On Thursday, Medibank shared that the sample records the attackers provided as evidence of their claim turned out to be valid.
Medibank has nearly 4 million customers, but it's possible that the data of former customers has also been compromised.
According to The Sydney Morning Herald, the attackers are threatening to contact 1000 of Medibank's most prominent customers with their personal information/diagnoses, before ultimately selling the entirety of the stolen data to third parties.
News URL
https://www.helpnetsecurity.com/2022/10/21/medibank-hack-data-breach/
Related news
- Amazon confirms employee data breach after vendor hack (source)
- Fintech giant Finastra investigates data breach after SFTP hack (source)
- Free, France’s second largest ISP, confirms data breach after leak (source)
- Interbank confirms data breach following failed extortion, data leak (source)
- How to Effectively Manage a Data Breach (source)
- HIBP notifies 57 million people of Hot Topic data breach (source)
- US space tech giant Maxar discloses employee data breach (source)
- Bologna FC confirms data breach after RansomHub ransomware attack (source)
- Rhode Island confirms data breach after Brain Cipher ransomware attack (source)
- Texas Tech University System data breach impacts 1.4 million patients (source)