Australians’ prescription records breached in large-scale ransomware attack

/in


Australia’s federal government is overseeing the response to a “large-scale” ransomware attack against MediSecure, a company that processed tens of millions of e-prescriptions for the nation’s citizens.

Click for more special coverage

While authorities and the company have acknowledged personal and health information was impacted, it is unclear how many records were breached, or who was responsible.

The country’s national cybersecurity coordinator, Lt. Gen. Michelle McGuinness, said in a statement she was managing the incident “working with agencies across the Australian Government, states and territories to coordinate a whole-of-government response.”

The Australian Federal Police were investigating the attack and the Australian Cyber Security Centre, part of the country’s Signals Directorate, were aware of the incident, McGuinness added.

MediSecure took its website offline after discovering the breach. “While we continue to gather more information, early indicators suggest the incident originated from one of our third-party vendors,” the company said.

Until last year, MediSecure was one of two medical technology companies contracted to provide e-script services across Australia’s public pharmaceutical prescription service. MediSecure lost the contract to another provider in late 2023 but continues to offer similar services to healthcare organizations in the private sector.

Since 2020, more than 200 million prescriptions had been processed by the country’s e-script providers, including MediSecure.

In an incident update, McGuinness said it appeared no current e-scripts were impacted by the breach.

“On the basis of technical advice from MediSecure to date, the original compromise has been isolated and there is no evidence to suggest an increased cyber threat to the medical sector,” she said.

No ransomware group appears to have claimed responsibility for the attack.

Javvad Malik, lead security awareness advocate at KnowBe4, said the incident was a reminder of the importance of robust cybersecurity measures within the healthcare sector.

“This breach not only disrupts the service provider’s operations but potentially exposes sensitive patient data, a scenario that…

Source…