More Medibank customers may have had their information stolen after the health insurance provider revealed that the cyber attack on the company was wider than originally thought.
Here is what we know and what Medibank has said to do if you are a customer.
What was today's update?
On Tuesday morning, Medibank confirmed that data from its main brand has also now believed to have been compromised.
Medibank said it had come to this conclusion after being sent customer data by criminals that included data from all three entities.
Previously, Medibank said the breach only affected customers of its subsidiary, ahm, and data collected about international students studying in Australia who use Medibank under its OSHC service.
What happened last week?
- Medibank was hit by a cyber attack on October 13 but at the time the company said there was no evidence that sensitive data had been accessed
- Last Wednesday, it issued a statement saying it received a message from a group claiming to be hackers
- The company halted trading on the share market as a result
- Cyber Security Minister Clare O'Neil said the attack has been referred to the Australian Federal Police
- Medibank is also working with the Australian Cyber Security Agency and the Australian Signals Directorate
- Last Thursday, Medibank confirmed a criminal has provided the company with a sample of 100 records, which it believes are from its systems
- The company expects that more people will be impacted as investigations continue
What should Medibank customers do?
All Medibank and ahm customers have been urged to contact the company's cyber response hotlines by phone (for ahm customers 13 42 46 and for Medibank customers 13 23 31) or through an information page on the firm's website.
Medibank has initiated a dedicated cybercrime customer support package to respond to the breach which includes:
- A hardship package to provide financial support for customers who are in a uniquely vulnerable position as a result of this crime, who will be supported on an individual basis
- Access to Medibank's mental health and wellbeing support line for all customers, including ahm customers
- Access to specialist identity protection advice and resources from IDCARE
- Free identity monitoring services for customers who have had their primary ID compromised
- Reimbursement of fees for re-issue of identity documents that have been fully compromised in this crime
The company has also established specialised teams to help customers who receive scam threats.
Medibank customers should send any suspicious emails or texts to scaminvestigations@medibank.com.au, while ahm customers should email scaminvestigations@ahm.com.au.
Medibank has reminded customers to stay vigilant for possible scams and said it will never contact customers requesting passwords or other sensitive information.
Customers can also speak to Medibank's qualified mental health professionals 24/7 over the phone for advice or support around mental health or wellbeing (1800 644 325).
What do we know about what was taken?
Medibank holds a range of sensitive information by virtue of being a health insurance company.
Of the records supplied by the hacker, Medibank says the data includes:
- First names and surnames
- Addresses
- Dates of birth
- Medicare numbers
- Policy numbers
- Phone numbers
- Data from claims made to the insurer
The data also includes details about where customers received medical services, the codes relating to their diagnosis and procedures.
The hacker also claims to have credit card details, however, this has not been verified by Medibank.
How many people does it affect?
The company says it still cannot confirm how many people have been affected by the cyber breach but said it expects the number to increase as the investigation continues.
Who is at risk?
All Medibank and ahm customers, as well as international students studying in Australia who use Medibank under its OSHC service are at risk from the data breach.
What has Medibank said about the breach?
Medibank CEO David Koczkar apologised unreservedly to customers affected by the data breach in a statement issued on Tuesday morning.
"As we continue to uncover the breadth and gravity of this crime, we recognise that these developments will be distressing for our customers, our people and the community – as it is to me," Mr Koczkar said.
"We stand ready to support our customers with identity, financial hardship and mental health support."
In response to the breach, Medibank has also deferred premium increases for Medibank and ahm customers which were scheduled to rise on November 1, 2022, to January 16, 2023.
Loading form...
https://news.google.com/__i/rss/rd/articles/CBMiZmh0dHBzOi8vd3d3LmFiYy5uZXQuYXUvbmV3cy8yMDIyLTEwLTI1L21lZGliYW5rLWJyZWFjaC1haG0tb3Noby1jeWJlci1hdHRhY2stZGF0YS13aGF0LXRvLWRvLzEwMTU3NDIwMNIBAA?oc=5
2022-10-25 03:15:40Z
1606995076
Bagikan Berita Ini
0 Response to "New details have emerged about the Medibank security breach. Who is at risk and what should customers do? - ABC News"
Post a Comment