Health
Australian Health Provider MediSecure Hit by Large-Scale Ransomware Data Breach
The Australian healthcare sector faced a significant blow as e-prescription firm, MediSecure, fell victim to a major ransomware attack and subsequent data breach. The National Cyber Security Coordinator (NCSC) in Australia issued an alert regarding this security incident. Hours later, MediSecure came forth to confirm that it was indeed the targeted entity.
Lieutenant General Michelle McGuinness, the NCSC representative, revealed that the Australian Signals Directorate’s Australian Cyber Security Centre and the Australian Federal Police are actively investigating the ransomware attack on MediSecure. The government is swiftly coordinating efforts across various agencies, states, and territories to mount a unified response strategy to mitigate the impacts of this cybersecurity breach.
Minister for Cyber Security, Clare O’Neil, expressed her concern over the ransomware attack and highlighted the urgency of addressing the issue. She underscored that speculation at this early stage could hamper the ongoing efforts to support MediSecure in containing the fallout from the security incident. The identity of the perpetrator behind the breach remains unknown at this point.
MediSecure swiftly responded to the cyber incident by acknowledging the breach on its systems, disclosing that personal and health information of individuals had been compromised. The e-prescription provider assured the public that immediate measures were taken to contain the impact and identified a potential third-party vendor as the point of origin for the security breach.
Wayne Phillips, Field Chief Technology Officer for APAC at SentinelOne, emphasized the severity of ransomware threats in the healthcare industry. He stressed the need for robust cybersecurity protocols to shield patient data and maintain the resilience of critical healthcare services. MediSecure is actively collaborating with the Australian Digital Health Agency, the Office of the Australian Information Commissioner, and other regulatory bodies to manage the aftermath of the breach and ensure data security.