Healthcare Cyber Attacks on the Rise

10841022296?profile=RESIZE_400xThere has been a very disturbing trend of criminal hackers targeting healthcare providers and directly at hospitals.  The NHS system in the UK was recently attacked, numerous healthcare and hospitals in the US and now in Australia.  What was once a “white collar crime” of only attacking financial institutions, these cyber-attacks are compromising the health and safety of people around the globe.  Health insurer Medibank Private says it has been hit by a cyber-attack. 

 

Key points:

It is Australia's latest cyber-attack after the Optus breach last month, which affected millions of customers

Medibank's ahm and international student policy management systems are currently offline

Investigations into the cyber-attack are ongoing

The Australian company said "unusual activity" had been detected on its network on 12 October but there was no evidence sensitive data, including customer information, had been accessed.[1]  Some customer-facing systems have been taken down which will cause "regrettable disruptions" to some customers, but health services will still be available, Medibank said.  It is the latest cyber-attack after the Optus breach last month, which affected millions of customers.  China would be the likely culprit.

Medibank’s chief executive said it recognized its responsibility, given the sensitive data it holds about people's health.  "I apologize and acknowledge that in the current environment this news may make people concerned," he said.  "Our highest priority is resolving this matter as transparently and quickly as possible."  Medibank's Australian Health Management (AHM) and international student policy management systems are currently offline.

Cybersecurity expert and founder of StickmanCyber said insurers such as Medibank were valuable targets for malicious cyber activity, thanks to the highly sensitive personal information that they held.  "It is encouraging to see large organisations like Medibank now coming forward and taking accountability for cyber-attacks and data breaches," he said.  "Communication is key in any incident, including cyber, or the public will speculate and draw their own conclusions, leading to erroneous information being circulated.  Being on the front foot and taking action, even when it may be disruptive to business, along with keeping customers and the public up-to-date is a step in the right direction."  StickmanCyber said businesses, regardless of their size and scale, needed to at least inform the Office of Australian Information Commission of a suspected or confirmed breach, and request assistance from Australian Cyber Security Centre and any third parties who could help with the investigation and remediation.

Medibank said investigations into the cyber-attack are ongoing.  The company requested a trading halt on the ASX while it investigated.     

Red Sky Alliance is a Cyber Threat Analysis and Intelligence Service organization.    For questions, comments or assistance, please contact the office directly at 1-844-492-7225, or feedback@wapacklabs.com      

Weekly Cyber Intelligence Briefings:

  • Reporting: https://www. redskyalliance. org/   
  • Website: https://www. wapacklabs. com/  
  • LinkedIn: https://www. linkedin. com/company/64265941   

Weekly Cyber Intelligence Briefings:

REDSHORTS - Weekly Cyber Intelligence Briefings

https://attendee.gotowebinar.com/register/5504229295967742989

[1] https://www.abc.net.au/news/2022-10-13/health-insurer-medibank-hit-by-cyber-attack/101531392

E-mail me when people leave their comments –

You need to be a member of Red Sky Alliance to add comments!

Comments

This reply was deleted.