Australian police are investigating a big data breach in a healthcare company after a ransomware attack on Thursday. The website and hotline of MediSecure, a company based in Melbourne, were offline after a breach occurred. This was confirmed by a statement from the electronic prescription service provider. No group has claimed responsibility for the attack so far.
The company said: “MediSecure takes its legal and ethical obligations seriously and appreciates this information will be of concern.
“MediSecure is actively assisting the Australian Digital Health Agency and the national cyber security coordinator to manage the impacts of the incident.”
In October last year, the ACCC authorized the transfer of all publicly-funded electronic prescriptions and data from MediSecure to eRx.
Australia’s cyber security minister Care O’Neil wrote on X that “updates will be provided in due course”. She added: “Speculation at this stage risks undermining significant work underway to support the company’s response.”
“Earlier, Australia’s national cyber security coordinator, Lieutenant General Michelle McGuinness, told the media that a healthcare company was the victim of the ransomware attack.”
“I am working with agencies across the Australian government, states and territories to co-ordinate a whole-of-government response to this incident,” she said.
The Gurdian said, ” MediSecure is one of two electronic prescriptions providers in Australia that has historically been responsible for the issue of millions of electronic prescriptions and was used extensively after the Covid-19 pandemic began in 2020. The health department said in January that since May 2020, over 189m electronic prescriptions have been issued.”
In October 2022, Medibank disclosed that hackers had gained unauthorized access to the personal information of millions of customers.