Security News > 2022 > October > Medibank hack turned into a data breach: The attackers are demanding money
Medibank, Australia's largest private health provider, has confirmed that last week's "Cyber incident" has resulted in a data breach.
Medibank Group took action: they engaged cyber security firms and began "Isolating and removing access to some customer-facing systems to reduce the likelihood of damage to systems or data loss."
On Wednesday, it confirmed the attackers got in touch with claims they have stolen data from the company's systems.
On Thursday, Medibank shared that the sample records the attackers provided as evidence of their claim turned out to be valid.
Medibank has nearly 4 million customers, but it's possible that the data of former customers has also been compromised.
According to The Sydney Morning Herald, the attackers are threatening to contact 1000 of Medibank's most prominent customers with their personal information/diagnoses, before ultimately selling the entirety of the stolen data to third parties.
News URL
https://www.helpnetsecurity.com/2022/10/21/medibank-hack-data-breach/
Related news
- Bologna FC confirms data breach after RansomHub ransomware attack (source)
- Rhode Island confirms data breach after Brain Cipher ransomware attack (source)
- Texas Tech University System data breach impacts 1.4 million patients (source)
- Ireland fines Meta $264 million over 2018 Facebook data breach (source)
- New fake Ledger data breach emails try to steal crypto wallets (source)
- Meta Fined €251 Million for 2018 Data Breach Impacting 29 Million Accounts (source)
- 46% of financial institutions had a data breach in the past 24 months (source)
- UN aviation agency investigating possible data breach (source)
- Washington state sues T-Mobile over 2021 data breach security failures (source)
- Largest US addiction treatment provider notifies patients of data breach (source)