Security News > 2022 > November > Ransomware gang threatens to release stolen Medibank data
A ransomware gang that some believe is a relaunch of REvil and others track as BlogXX has claimed responsibility for last month's ransomware attack against Australian health insurance provider Medibank Private Limited.
While until now, the attack on Medibank hasn't yet been attributed to a specific ransomware group, the company did confirm that the malicious activity observed on its network matches ransomware activity.
The ransomware gang threatened today in a new entry added to its data leak website that it would leak data allegedly stolen from Medibank's systems within 24 hours.
The gang is yet to reveal how much data it exfiltrated out of Medibank's network and hasn't shared any proof to verify these claims.
Today, before the ransomware gang starts leaking the allegedly stolen data to back their claims and attempt to force Medibank's hand into negotiating a deal, the company revealed the attackers gained access to sensitive information belonging to millions of customers.
"Given the nature of this crime, unfortunately we now believe that all of the customer data accessed could have been taken by the criminal," Medibank added.