MediSecure Suffers Ransomware Attack, Patient Data Exposed

Australian digital health company MediSecure suffered a likely ransomware attack that originated from one of its third-party vendors, according to a statement from the company. As a result, the personal and health information of individuals could be compromised.

MediSecure has taken immediate steps to mitigate any potential impact on its systems, and the company is currently working with the National Cyber Security Coordinator to investigate the security breach.

Early indicators suggest that the incident originated from a third-party vendor, and the company has notified the Office of the Australian Information Commissioner and other relevant authorities.

The attack forced the company to shut down its website and phone lines, and ABC reported that it is the health organization at the center of the large-scale ransomware data breach announced by the national cyber security coordinator.

This is at least the second significant healthcare data breach in Australia in the past year, as Medibank announced in November 2022 that personal data belonging to 9.7 million current and former customers were exposed due to a ransomware attack that occurred in October 2022.

Medibank is one of the largest Australian private health insurance providers with approximately 3.9 million customers.

Read more