Australia's Medibank warns that hacker may release more data


FILE PHOTO: An illuminated sign is seen outside a branch of the Australian health insurer Medibank Private in Sydney October 20, 2014. REUTERS/David Gray/File Photo

SYDNEY (Reuters) -Australia's biggest health insurer Medibank Private Ltd, recently hit by a massive cyber hack, said on Wednesday the hacker could release more stolen data after the company refused to make ransom payments.

Some names, addresses, phone numbers, email addresses, passport numbers of international students and health claims data stolen from Medibank's systems have already been released on a dark web forum, the company said in a statement.

"We expect the criminal to continue to release files on the dark web," it added.

Local media has reported the stolen data was posted on a blog linked to ransomware crime group REvil, which some experts say has links to Russia.

Prime Minister Anthony Albanese said his government was working with investigators on the cyber hack, the latest in a string of data breaches which have rocked corporate Australia.

"This is really tough for people. I'm a Medibank private customer as well, and it will be of concern that some of this information has been put out there," Albanese said during a media briefing.

It was not immediately clear whether the hacker has access to the prime minister's medical or personal details.

Data of around 9.7 million current and former customers were compromised, Medibank has said.

Medibank shares have plunged 22% since the hack was revealed by the company on Oct. 13. Shares were up nearly 2% in late morning trade on Wednesday.

Medibank's decision not to pay a ransom is consistent with the government's advice, Federal Cyber Security Minister Clare O'Neil said in a statement on Wednesday. She urged impacted customers to be on high alert for extortion attempts.

Medibank Chief Executive David Koczkar described the incident as "a criminal act" on Wednesday.

Australia has seen a spike in cyber attacks with at least eight companies, including Singapore Telecommunications-owned telecoms company Optus, reporting breaches since September.

Technology experts have said Australia has become a target for hackers just as a skills shortage leaves an understaffed, overworked cybersecurity workforce ill-equipped to stop attacks.

(Reporting by Renju Jose in Sydney, Harshita Swaminathan and Himanshi Akhand in Bengaluru; Editing by Alasdair Pal and Himani Sarkar)

Follow us on our official WhatsApp channel for breaking news alerts and key updates!

   

Next In Tech News

Musk now says it's 'pointless' to build a $25,000 Tesla for human drivers
Google defeats lawsuit over gift card fraud
Russian court fines Apple for not deleting two podcasts, RIA reports
GlobalFoundries forecasts upbeat Q4 results on strong demand from smartphone makers
Emerson sharpens automation focus with offer for rest of AspenTech in $15 billion deal
Palantir shares surge to record as AI boom powers forecast raise
Tax fraud investigators search Netflix offices in Paris and Amsterdam, says source
Singapore's Keppel to buy Japanese AI-ready data centre
Tesla increases wages for staff at German gigafactory by 4%
Apple explores push into smart glasses with ‘Atlas’ user study

Others Also Read