More stolen Medibank data released, containing information about mental health and chronic conditions
Hackers have released more stolen Medibank data, with the medical records of almost 1,500 customers released on Sunday on the dark web.
- Records belonging to 1,469 customers were released to the dark web
- The CEO says the company is continuing to work with AFP
- Medibank has apologised, again, to customers
According to Medibank, the latest release included people with chronic conditions such as heart disease, diabetes and asthma, people with cancer, people with dementia, people with mental health conditions, people with infections and people who have sustained injuries, among other conditions.
Some of the people on the list have had diagnoses that include mental illnesses, or delirium, which is an acute change in mental status that can be triggered by illness, injury, surgery, or medications.
Medibank confirmed they have analyzed the file called “STD”, which did not contain STD codes. The common condition in this list was anemia.
STD’s are not usually treated for in hospital.
Medibank CEO David Koczkar said the company was doing everything they can to support customers.
“We will continue to support all people who have been impacted by this crime through our Cyber Response Support Program,” he said.
“This includes mental health and wellbeing support, identity protection and financial hardship measures.
“Anyone who downloads this data from the dark web, which is more complicated than searching for information in a public internet forum and attempts to profit from it, is committing a crime.
“The Australian Federal Police have said law enforcement will take swift action against anyone attempting to benefit, exploit or commit criminal offenses using stolen Medibank customer data.
“We continue to work closely with the Australian Federal Police who are focused, as part of Operation Guardian, on preventing the criminal misuse of this data.”
Medibank chief executive David Koczkar.(ABC News)
Mr Koczkar previously said about 480,000 customers health data was believed to have been stolen.
“Again, I unreservedly apologise to our customers,” he said.
“We remain committed to fully and transparently communicating with customers and we will continue to contact customers whose data has been released on the dark web.”
The data released on Sunday included four files containing 1,469 records, including 123 previously released.
Of those, 375 of the 1,496 records do not match against that policy for that procedure, according to Medibank, who said previous files released also have not matched their records.
The data release comes on top of 1,200 files already published on the dark web, bringing the total to 2,669.
Hackers have previously demanded $US9.7 million ($15.09 million) in ransom for the records.
The federal government has backed Medibank’s decision not to pay the ransom to prevent the release of customer data.
AFP Commissioner Reece Kershaw confirmed criminals based in Russia had been identified as the culprits behind the Medibank hack — a claim the Russian embassy denies.