Today, the company announced that it has been indirectly impacted by a cybersecurity incident on one of its service providers, that has resulted in a data breach.
In a short announcement, the Australian NCSC said that “a commercial health information organisation” reported being “The victim of a large-scale ransomware data breach incident.”
“Yesterday afternoon I was advised by a commercial health information organisation that it was the victim of a large-scale ransomware data breach incident. I am working with agencies across the Australian Government, states and territories to coordinate a whole-of-government response to this incident.” – NCSC. Although MediSecure did not mention a ransomware attack, The Australian Financial Review and ABC [1, 2] report that the company behind the NCSC’s announcement was MediSecure.
The worst healthcare-related data breach incident in Australia’s recent history is that of Medibank that was breached by the REvil ransomware gang in October 2022.
Singing River Health System: Data of 895,000 stolen in ransomware attack.
GHC-SCW: Ransomware gang stole health data of 533,000 people.