Extortionist threatens to publish Australian customer data

Nov 7, 2022, 8:20 PM | Updated: 8:31 pm
A computer and phone display pages from Medibank Private in Sydney, Tuesday, Nov. 8, 2022. Health i...

A computer and phone display pages from Medibank Private in Sydney, Tuesday, Nov. 8, 2022. Health insurer Medibank on Monday ruled out paying ransom for stolen customer data while a purported hacker responded on Tuesday by setting a 24-hour deadline for the release that data including personal medical histories. (AP Photo/Rick Rycroft)

(AP Photo/Rick Rycroft)

CANBERRA, Australia (AP) — An extortionist has threatened to make Medibank customer data public within 24 hours after Australia’s largest health insurer refused to pay a ransom for the personal records of almost 10 million current and former customers.

Medibank on Monday ruled out paying ransom for the stolen data. The theft was reported to police Oct. 19 when trade in the company’s shares was halted for a week.

The thieves had reportedly threatened to expose the diagnoses and treatments of high-profile customers unless a ransom of an undisclosed sum was paid.

“Based on the extensive advice we have received from cybercrime experts, we believe there is only a limited chance paying a ransom would ensure the return of our customers’ data and prevent it from being published,” Medibank CEO David Koczkar said in a statement.

“In fact, paying could have the opposite effect and encourage the criminal to directly extort our customers and there is a strong chance that paying puts more people in harm’s way by making Australia a bigger target,” Koczkar added.

A blogger using the name “Extortion Gang” posted Monday night on the dark web that “data will be publish (sic) in 24 hours.”

“P.S. I recommend to sell medibank (sic) stocks,” the blog added.

The post did not include data samples that could prove the author held the data. But Medibank on Tuesday took the threat seriously.

“We knew the publication of data online by the criminal could be a possibility, but the criminal’s threat is still a distressing development for our customers,” Koczkar said.

Koczkar urged customers to remain vigilant and warned that the criminal could contact them directly.

Medibank this week updated its estimate of the number of people whose personal information had been stolen from 4 million two weeks ago to 9.7 million. The stolen data included health claims of almost 500,000 people including diagnoses and treatments, the company said.

“The weaponization of their private information is malicious and it is an attack on the most vulnerable members of our society,” Koczkar said.

Cybersecurity Minister Clare O’Neil welcomed Medibank’s stance, saying its refusal to pay a ransom was in line with her government’s advice.

Medibank revealed this week that a hacker stole a company employee’s username and password to access the customer database.

At least two legal firms say they are investigating a potential class-action lawsuit against Medibank for failing to protect customer data.

The price of Medibank shares fell almost 3% in early trade Tuesday on the Australian Security Exchange following threats of data publication and lawsuits.

Copyright © The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.

AP

Sri Lankan government soldiers march carrying national flags during the 75th Independence Day cerem...
Associated Press

Sri Lanka marks independence anniversary amid economic woes

COLOMBO, Sri Lanka (AP) — Sri Lanka marked its 75th independence anniversary on Saturday as a bankrupt nation, with many citizens angry, anxious and in no mood to celebrate. Many Buddhists and Christian clergy had announced a boycott of the celebration in the capital, while activists and others expressed anger at what they see as […]
1 day ago
FILE - President Joe Biden delivers his first State of the Union address to a joint session of Cong...
Associated Press

Biden makes progress on ‘unity agenda’ outlined in 2022

WASHINGTON (AP) — A year ago, President Joe Biden used his first State of the Union address to push top Democratic priorities that were sure to face a battle in the narrowly divided Congress but he also laid out a four-pronged “unity agenda” that would be an easier sell. Biden’s unity goals would be hard […]
1 day ago
Associated Press

New California oil well ban put on hold for voters to decide

SACRAMENTO, Calif. (AP) — California’s new law banning new oil and gas wells near homes, schools and other community sites has been put on hold until after voters decide next year whether to throw it out, officials announced Friday. Opponents of Senate Bill 1137 gathered more than 623,000 valid voter signatures to put a referendum […]
1 day ago
FILE - Florida Gov. Ron DeSantis speaks after being sworn in to begin his second term during an ina...
Associated Press

Florida lawmakers to meet next week on Disney, immigration

TALLAHASSEE, Fla. (AP) — Florida lawmakers will meet next week to complete a state takeover of Walt Disney World’s self-governing district and debate proposals on immigration and election crimes, as Republican Gov. Ron DeSantis continues to leverage national political fissures ahead of an expected White House run. Republican leaders of the Legislature, in coordination with […]
1 day ago
FILE - Johnny Thai, 11, receives the Pfizer COVID-19 vaccine at a pediatric vaccine clinic for chil...
Associated Press

California won’t require COVID vaccine to attend schools

SACRAMENTO, Calif. (AP) — Children in California won’t have to get the coronavirus vaccine to attend schools, state public health officials confirmed Friday, ending one of the last major restrictions of the pandemic in the nation’s most populous state. Gov. Gavin Newsom first announced the policy in 2021, saying it would eventually apply to all […]
1 day ago
Part of the 988helpline.org website is photographed Friday, Feb. 3, 2023. A cyberattack caused a ne...
Associated Press

Feds say cyberattack caused suicide helpline’s outage

WASHINGTON (AP) — A cyberattack caused a nearly daylong outage of the nation’s new 988 mental health helpline late last year, federal officials told The Associated Press Friday. Lawmakers are now calling for the federal agency that oversees the program to prevent future attacks. “On December 1, the voice calling functionality of the 988 Lifeline […]
1 day ago

Sponsored Articles

...
Day & Night Air Conditioning, Heating and Plumbing

Company looking for oldest air conditioner and wants to reward homeowner with new one

Does your air conditioner make weird noises or a burning smell when it starts? If so, you may be due for an AC unit replacement.
(Pexels Photo)...

Sports gambling can be fun for adults, but it’s a dangerous game for children

While adults may find that sports gambling is a way to enhance the experience with more than just fandom on the line, it can be a dangerous proposition if children get involved in the activity.
(Photo via MLB's Arizona Fall League / Twitter)...
Arizona Fall League

Top prospects to watch at this year’s Arizona Fall League

One of the most exciting elements of the MLB offseason is the Arizona Fall League, which began its 30th season Monday.
Extortionist threatens to publish Australian customer data