Hackers are continuing to leak Medibank’s customer data.
Stolen Medibank customer data has been released on the dark web overnight (Nov 30). Around 6 zipped files in a folder called ‘full’ containing the raw data that we believed the criminal stole, the company said in a statement.
While our investigation continues there are currently no signs that financial or banking data has been taken. And the personal data stolen, in itself, is not sufficient to enable identity and financial fraud. The raw data we have analysed today so far is incomplete and hard to understand, Medibank said.
The name, date of birth, address, phone number and email address for around 9.7 million current and former customers and some of their authorised representatives were leaked. This figure represents around 5.1 million Medibank customers, around 2.8 million ahm customers and around 1.8 million international customers
Much of the data is incomplete and hard to understand, it added. For example, health claims data released today has not been joined with customer name and contact details, Medibank said.
“Given the sensitive nature of the stolen customer data that is being released on the dark web we continue to ask the media and others to support our ongoing efforts to minimise harm to customers, and not to unnecessarily download sensitive personal data from the dark web and to refrain from contacting customers directly.
More vigilance needed
Medibank said that it is in the process of analysing the data, but the data released appears to be the data that the criminal stole. Unfortunately, we expected the criminal to continue to release files on the dark web, Medibank said.
Medibank CEO David Koczkar said while there are media reports of this being a signal of ‘case closed’, our work is not over.
“We are remaining vigilant and are doing everything we can to ensure our customers are supported. It’s important everyone stays vigilant to any suspicious activity online or over the phone. We will continue to support all people who have been impacted by this crime through our Cyber Response Support Program. This includes mental health and wellbeing support, identity protection and financial hardship measures.”
“If customers are concerned, they should reach out for support from our cybercrime hotline, our mental health support line, Beyond Blue, Lifeline or their GP. Anyone who downloads this data from the dark web, which is more complicated than searching for information in a public internet forum and attempts to profit from it is committing a crime.”
“The Australian Federal Police have said law enforcement will take swift action against anyone attempting to benefit, exploit or commit criminal offenses using stolen Medibank customer data. We continue to work closely with the Australian Federal Police who are focused, as part of Operation Guardian, on preventing the criminal misuse of this data.
Medibank’s customers can also contact the company to understand what data has been accessed. “We’ve extended call centre hours and we’ve increased our customer support team by more than 300 people. In addition, from this week, we’re taking extra security steps to further protect our customers – with two-factor authentication in our contact centres. So, when a customer calls for support, we can verify their identify and be sure we’re speaking with them and not someone else.”
Australia has been grappling with a recent rise in cyber attacks. Around 6-8 companies, including telecoms company Optus, owned by Singapore Telecommunications, have reported breaches since September.