Security News > 2022 > October > Medibank hack turned into a data breach: The attackers are demanding money
Medibank, Australia's largest private health provider, has confirmed that last week's "Cyber incident" has resulted in a data breach.
Medibank Group took action: they engaged cyber security firms and began "Isolating and removing access to some customer-facing systems to reduce the likelihood of damage to systems or data loss."
On Wednesday, it confirmed the attackers got in touch with claims they have stolen data from the company's systems.
On Thursday, Medibank shared that the sample records the attackers provided as evidence of their claim turned out to be valid.
Medibank has nearly 4 million customers, but it's possible that the data of former customers has also been compromised.
According to The Sydney Morning Herald, the attackers are threatening to contact 1000 of Medibank's most prominent customers with their personal information/diagnoses, before ultimately selling the entirety of the stolen data to third parties.
News URL
https://www.helpnetsecurity.com/2022/10/21/medibank-hack-data-breach/
Related news
- HPE notifies employees of data breach after Russian Office 365 hack (source)
- UN aviation agency investigating possible data breach (source)
- Washington state sues T-Mobile over 2021 data breach security failures (source)
- Largest US addiction treatment provider notifies patients of data breach (source)
- STIIIZY data breach exposes cannabis buyers’ IDs and purchases (source)
- EU law enforcement training agency data breach: Data of 97,000 individuals compromised (source)
- Wolf Haldenstein law firm says 3.5 million impacted by data breach (source)
- Otelier data breach exposes info, hotel reservations of millions (source)
- PayPal to pay $2 million settlement over 2022 data breach (source)
- UnitedHealth now says 190 million impacted by 2024 data breach (source)