Insurance giant Medibank has confirmed hackers have stolen the private health information of Australians after the latest data breach
Initially playing down the impact of the attack, on Wednesday Medibank confirmed it had been contacted by the criminals who claim to have stolen 200GB of data.
Medibank customer data accessed by the criminals includes:
- First and last names.
- Addresses.
- phone numbers.
- dates of birth.
- Medicare numbers.
- Claims data and policy numbers.
According to Medibank the cyber criminal provided a sample of records for 100 policies which they believe came from there ahm and international student systems,.
“That data includes first names and surnames, addresses, dates of birth, Medicare numbers, policy numbers, phone numbers and some claims data,” said Medibank.
The criminal has also asserted that he stole other data, including credit card security data, which Medibank has not yet verified.
Medibank said the attacker also claimed to have “data related to credit card security” but that this was yet to be verified.
“This morning we will commence making direct contact with the affected customers to inform them of this latest development,” said Medibank.
Home Affairs Minister Clare O’Neil called the targeting of health related information a “dog act”.
“Financial crime is a terrible thing but ultimately a credit card can be replaced,” she said.
“The threat that is being made here to make the private personal health information of Australians made available to the public is a dog act.
“Medibank initially “assured” the government no customer data had been affected by last week’s breach and that the malicious actors had been removed,” says Ms O’Neil
