Medibank hit by cyber attack

A

Ade

Established Member
AFF Supporter
Joined
Mar 5, 2019
Posts
3,235
Qantas
Platinum
Virgin
Platinum
After Optus, it's Medibank's turn now. From ABC news ;

www.abc.net.au

Medibank Private hit by cyber attack, but says no sensitive data accessed

The health insurer says it detected "unusual activity" on its network on Wednesday, and clients will face disruptions.
www.abc.net.au www.abc.net.au

Health insurer Medibank Private says it has been hit by a cyber attack.

The company said "unusual activity" had been detected on its network on Wednesday, but there was no evidence sensitive data, including customer information, had been accessed.

Some customer-facing systems have been taken down which will cause "regrettable disruptions" to some customers, but health services will still be available, Medibank said.

It is the latest cyber attack after the Optus breach last month, which affected millions of customers.

Chief executive David Koczkar said Medibank recognised its responsibility, given the sensitive data it holds about people's health.

"I apologise and acknowledge that in the current environment this news may make people concerned," he said.

"Our highest priority is resolving this matter as transparently and quickly as possible."

Medibank's ahm and international student policy management systems are currently offline.

Investigations into the cyber attack are ongoing, the company said.

Medibank requested a trading halt on the ASX while it investigated.
 
CaptainCurtis said:
Requesting a trading halt on the ASX for a breach, where supposedly no customer data was accessed? Seems excessive. Wouldn't be surprised if there's more to this.
Click to expand...
Probably still trying to work out if it’s material (liability and financials) so suspend whilst determining (to remain compliant with listing rules).
 
CaptainCurtis said:
Requesting a trading halt on the ASX for a breach, where supposedly no customer data was accessed? Seems excessive. Wouldn't be surprised if there's more to this.
Click to expand...
Not an acknowledgment of a problem, but recognising that they can’t fully inform the market so need to stop trading.
 
Got an email this morning from Medibank.

Excerpt below ;

At this stage, there is no evidence that any customer data has been accessed. We don’t have all the answers yet, but our highest priority is protecting Medibank Group customers and our people.

What we are doing
While we conduct our investigation, we have temporarily taken some of our customer-facing systems offline. At this stage, these changes to our systems are not impacting Medibank customers.  

We’ve engaged external cybersecurity experts to help us with our investigation and are in contact with the relevant government agencies.
 
CaptainCurtis said:
Requesting a trading halt on the ASX for a breach, where supposedly no customer data was accessed? Seems excessive. Wouldn't be surprised if there's more to this.
Click to expand...
And here’s the more to it…

Today Medibank Group has received messages from a group that wishes to negotiate with the company regarding their alleged removal of customer data.
This is a new development and Medibank understands this news will cause concerns for customers and the protection of their data remains our priority.
Medibank is working urgently to establish if the claim is true, although based on our ongoing forensic investigation we are treating the matter seriously at this time.
 
Great...first Optus and now Medibank...and both affect me. :(


Edit: and Vinomofo too..can't take a trick atm!
 
Last edited:
Struggling to Redeem Your Frequent Flyer Points?
The Frequent Flyer Concierge team takes the hard work out of finding reward seat availability. Using their expert knowledge and specialised tools, they'll help you book a great trip that maximises the value for your points.

AFF Supporters can remove this and all advertisements

kpc said:
Great...first Optus and now Medibank...and both affect me. :(


Edit: and Vinomofo too..can't take a trick atm!
Click to expand...
As I read on another forum, it's almost at a point where we just publish these details ourselves, then we wouldn't have to cope with the false sincerity emails from these companies and their CEO's who were too busy massaging shareholders...
 
And people also felt that the Optus hack was as serious as it gets. This is far worse with peoples medical history copied.
Also reported Albo is insured with Medibank. The CEO must be feeling a lot of pressure.
 
I'm with MP and have been receiving the e-mails and I'm content with their response so far. So far, its only their low-cost subsidiaries that have been identified as affected.

As for my medical records - I appreciate it would be very serious for some and don't want to trivialise it, but anyone who wants to read the results of my colonoscopies, hernia and retinal operations are welcome to them. I can even provide pictures of the colonoscopy if they wish 🤣
 
RooFlyer said:
I'm with MP and have been receiving the e-mails and I'm content with their response so far. So far, its only their low-cost subsidiaries that have been identified as affected.

As for my medical records - I appreciate it would be very serious for some and don't want to trivialise it, but anyone who wants to read the results of my colonoscopies, hernia and retinal operations are welcome to them. I can even provide pictures of the colonoscopy if they wish 🤣
Click to expand...
As a customer of Medibank for our health insurance, I've also been getting the emails, and I'm far more sceptical. I feel they knew the extent of the hack to begin with (it doesn't change over time!) and have been drip feeding to avoid the backlash that Optus had.
 
Latest update

There has been a further development in Medibank’s cybercrime event.

It has become clear that the criminal has taken data that now includes Medibank customer data, in addition to that of ahm and international student customers.

We have received a series of additional files from the criminal. We have been able to determine that this includes:
  • A copy of the file received last week containing 100 ahm policy records – including personal and health claims data
  • A file of a further 1,000 ahm policy records – including personal and health claims data
  • Files which contain some Medibank and additional ahm and international student customer data
Given the complexity of what we have received, it is too soon to determine the full extent of the customer data that has been stolen.

We will continue to analyse what we have received to understand the total number of customers impacted, and specifically which information has been stolen.

We will also continue to contact our customers as we are able to confirm whether their data has been compromised.

We will continue to provide you with regular, transparent updates.
 
CaptainCurtis said:
Latest update

There has been a further development in Medibank’s cybercrime event.

It has become clear that the criminal has taken data that now includes Medibank customer data, in addition to that of ahm and international student customers.

We have received a series of additional files from the criminal. We have been able to determine that this includes:
  • A copy of the file received last week containing 100 ahm policy records – including personal and health claims data
  • A file of a further 1,000 ahm policy records – including personal and health claims data
  • Files which contain some Medibank and additional ahm and international student customer data
Given the complexity of what we have received, it is too soon to determine the full extent of the customer data that has been stolen.

We will continue to analyse what we have received to understand the total number of customers impacted, and specifically which information has been stolen.

We will also continue to contact our customers as we are able to confirm whether their data has been compromised.

We will continue to provide you with regular, transparent updates.
Click to expand...
Yea, I got the same thing a few days back ..,
 
oz_mark said:
Interesting. I thought the part about the Medibank brand itself being affected was only disclosed today.
Click to expand...
Link to my post from earlier this week

Medibank hit by cyber attack

After Optus, it's Medibank's turn now. From ABC news ; https://www.abc.net.au/news/2022-10-13/health-insurer-medibank-hit-by-cyber-attack/101531392 Health insurer Medibank Private says it has been hit by a cyber attack. The company said "unusual activity" had been detected on its network on...
www.australianfrequentflyer.com.au www.australianfrequentflyer.com.au
 

Enhance your AFF viewing experience!!

From just $6 we'll remove all advertisements so that you can enjoy a cleaner and uninterupted viewing experience.

And you'll be supporting us so that we can continue to provide this valuable resource :)


Sample AFF with no advertisements? More..

Recent Posts

Currently Active Users

Total: 956 (members: 32, guests: 924)
Back
Top