Jump to content
  • Australian insurance firm Medibank confirms ransomware attack

    alf9872000

    • 598 views
    • 2 minutes
     Share


    • 598 views
    • 2 minutes

    Health insurance provider Medibank has confirmed that a ransomware attack is responsible for last week's cyberattack and disruption of online services.

     

    Medibank Private Limited is one of Australia's largest private health insurance providers, covering over 3.7 million people and having 4,000 employees.

     

    In a new statement by the company, CEO David Koczkar apologized for the temporary service outage, confirmed they suffered a ransomware attack, and informed customers that normal operations have resumed.

     

    "Our ongoing investigation has found the unusual activity we detected in part of our IT network was consistent with a possible ransomware threat," details the statement.

     

    While Koczkar states that the company suffered a ransomware attack, they claim that no systems were encrypted during the attack. Furthermore, while they continue to investigate the incident, no evidence has been uncovered that customer data has been stolen by the attackers.

     

    The company first detected unusual activity on its network on Wednesday, October 12, and immediately shut down parts of its systems, including customer-facing services, to reduce the chances of data loss.

     

    On Friday, Medibank sent out approximately 2.8 million emails and SMS to notify its customers about the security incident and provide an explanation for the outages.

     

    letter.png
    Notice sent to Medibank customers
     

    The notices provided the first assurances about the safety of sensitive private data but underlined that the investigation was still ongoing.

     

    Today's announcement hasn't changed anything on that front, so both customer data and IT system integrity appear unaffected by the cyberattack.

     

    "As a further precaution, we've put in place additional security measures across our network, and we continue to work with external cybersecurity experts and the Australian Government's lead cyber agency, with our forensic investigation continuing," concludes Medibank's statement.

    Australia's IT turmoil

    Australia has had several high-profile cybersecurity incidents in the past couple of weeks, including:

     

    In response to these breaches, the Australian government is expected to introduce stricter data protection laws soon. The creation of a cyberattack prevention and response system is also being discussed.

     
    • Like 2

    User Feedback

    Recommended Comments

    There are no comments to display.



    Join the conversation

    You can post now and register later. If you have an account, sign in now to post with your account.
    Note: Your post will require moderator approval before it will be visible.

    Guest
    Add a comment...

    ×   Pasted as rich text.   Paste as plain text instead

      Only 75 emoji are allowed.

    ×   Your link has been automatically embedded.   Display as a link instead

    ×   Your previous content has been restored.   Clear editor

    ×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...