MediSecure [1] [2] [3] [4] [5] [6] [7] [8], an Australian healthcare company specializing in electronic prescriptions, recently experienced a ransomware attack resulting in a data breach.

Description

Australian healthcare company MediSecure [2] [6] [7] [8], based in Melbourne and specializing in electronic prescriptions since 2009, has confirmed a ransomware attack resulting in a data breach. Hackers targeted MediSecure [1], a company managing millions of digital scripts in Australia [1], and demanded a ransom after stealing personal and health information of customers. The breach, believed to have originated from a third-party vendor issue [3] [4] [5] [6] [7], has prompted immediate action to minimize potential system impacts. The company’s website and hotline were offline following the incident [2]. MediSecure is actively working with authorities [2], including the Australian Digital Health Agency [2] [3] [4] [7], the Australian Signals Directorate [5], the Australian Cyber Security Centre [5] [6], and the Australian Federal Police to manage the impacts of the breach. The national cybersecurity co-ordinator is managing the fallout from the attack [1], which was disclosed on Thursday [1]. The Australian Federal Police are currently investigating the matter [6]. Cybersecurity Minister Clare O’Neil has urged against speculation on the company involved [7]. No data has yet appeared online [7], and no ransomware group has claimed responsibility [7]. This incident is part of a concerning trend where healthcare organizations are increasingly targeted by ransomware attacks, with 24 incidents reported in US healthcare organizations in 2024. The attractiveness of healthcare data to ransomware attackers due to its sensitive nature is a growing concern. Australia recently dropped plans to ban ransomware payments [7], opting for mandatory reporting obligations instead [7]. MediSecure [1] [2] [3] [4] [5] [6] [7] [8], an electronic prescriptions provider in Australia [3], is committed to transparency and will provide updates on their website as more information becomes available [3]. Those potentially affected by the breach do not need to take any action at this stage and will be notified by MediSecure if their information has been released [3].

Conclusion

The ransomware attack on MediSecure highlights the increasing threat to healthcare organizations and the importance of cybersecurity measures. Immediate action and collaboration with authorities are crucial in minimizing the impacts of such breaches. The incident underscores the need for ongoing vigilance and preparedness in the face of evolving cyber threats.

References

[1] https://www.afr.com/technology/electronic-prescriptions-company-hacked-in-major-ransomware-breach-20240516-p5je6m
[2] https://www.independent.co.uk/news/world/australasia/australia-medical-data-breach-medisecure-b2546036.html
[3] https://www.theadvocate.com.au/story/8630898/health-data-hacked-in-large-scale-ransonware-breach-in-australia/
[4] https://www.abc.net.au/news/2024-05-16/health-organisation-part-of-large-scale-ransomware-data-breach/103856582
[5] https://www.news.com.au/technology/online/hacking/australian-healthcare-provider-victim-to-largescale-ransomware-attack/news-story/ff314e308438a2af521687352430e88d
[6] https://au.finance.yahoo.com/news/medisecure-cyber-attack-australian-prescription-company-reveals-large-scale-ransomware-breach-055443016.html
[7] https://www.smh.com.au/technology/police-investigate-large-scale-healthcare-data-breach-20240516-p5je66.html
[8] https://www.infosecurity-magazine.com/news/patient-data-risk-medisecure/