AP

Extortionist threatens to publish Australian customer data

Nov 7, 2022, 8:20 PM | Updated: 8:31 pm

CANBERRA, Australia (AP) — An extortionist has threatened to make Medibank customer data public within 24 hours after Australia’s largest health insurer refused to pay a ransom for the personal records of almost 10 million current and former customers.

Medibank on Monday ruled out paying ransom for the stolen data. The theft was reported to police Oct. 19 when trade in the company’s shares was halted for a week.

The thieves had reportedly threatened to expose the diagnoses and treatments of high-profile customers unless a ransom of an undisclosed sum was paid.

“Based on the extensive advice we have received from cybercrime experts, we believe there is only a limited chance paying a ransom would ensure the return of our customers’ data and prevent it from being published,” Medibank CEO David Koczkar said in a statement.

“In fact, paying could have the opposite effect and encourage the criminal to directly extort our customers and there is a strong chance that paying puts more people in harm’s way by making Australia a bigger target,” Koczkar added.

A blogger using the name “Extortion Gang” posted Monday night on the dark web that “data will be publish (sic) in 24 hours.”

“P.S. I recommend to sell medibank (sic) stocks,” the blog added.

The post did not include data samples that could prove the author held the data. But Medibank on Tuesday took the threat seriously.

“We knew the publication of data online by the criminal could be a possibility, but the criminal’s threat is still a distressing development for our customers,” Koczkar said.

Koczkar urged customers to remain vigilant and warned that the criminal could contact them directly.

Medibank this week updated its estimate of the number of people whose personal information had been stolen from 4 million two weeks ago to 9.7 million. The stolen data included health claims of almost 500,000 people including diagnoses and treatments, the company said.

“The weaponization of their private information is malicious and it is an attack on the most vulnerable members of our society,” Koczkar said.

Cybersecurity Minister Clare O’Neil welcomed Medibank’s stance, saying its refusal to pay a ransom was in line with her government’s advice.

Medibank revealed this week that a hacker stole a company employee’s username and password to access the customer database.

At least two legal firms say they are investigating a potential class-action lawsuit against Medibank for failing to protect customer data.

The price of Medibank shares fell almost 3% in early trade Tuesday on the Australian Security Exchange following threats of data publication and lawsuits.

Copyright © The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.

AP

Several hundred students and pro-Palestinian supporters rally at the intersection of Grove and Coll...

Associated Press

Pro-Palestinian protests sweep US college campuses following mass arrests at Columbia

Columbia canceled in-person classes, dozens of protesters were arrested at New York University and Yale, and the gates to Harvard Yard were closed to the public Monday.

1 day ago

Ban on sleeping outdoors under consideration in Supreme Court...

Associated Press

With homelessness on the rise, the Supreme Court weighs bans on sleeping outdoors

The Supreme Court is wrestling with major questions about the growing issue of homelessness as it considers a ban on sleeping outdoors.

1 day ago

Arizona judge declares mistrial in case of rancher who shot migrant...

Associated Press

Arizona judge declares mistrial in the case of a rancher accused of fatally shooting a migrant

An Arizona judge declared a mistrial in the case of rancher accused of killing a Mexican man on his property near the U.S.-Mexico border.

1 day ago

Donald Trump appears in court for opening statements in his criminal trial for allegedly covering u...

Associated Press

Trump tried to ‘corrupt’ the 2016 election, prosecutor alleges as hush money trial gets underway

Donald Trump's criminal trial in New York over alleged hush money payments started with opening statements on Monday.

2 days ago

This satellite image from Planet Labs PBC shows Iran's nuclear site in Isfahan, Iran, April 4, 2024...

Associated Press

Israel, Iran play down apparent Israeli strike. The muted responses could calm tensions — for now

Israel and Iran are both playing down an apparent Israeli airstrike near a major air base and nuclear site in central Iran.

4 days ago

Speaker of the House Mike Johnson, R-La., talks to reporters just after lawmakers pushed a $95 bill...

Associated Press

Ukraine, Israel aid advances in rare House vote as Democrats help Republicans push it forward

The House pushed ahead Friday on a foreign aid package of $95 billion for Ukraine, Israel, Taiwan and other sources of humanitarian support.

4 days ago

Sponsored Articles

...

Condor Airlines

Condor Airlines can get you smoothly from Phoenix to Frankfurt on new A330-900neo airplane

Adventure Awaits! And there's no better way to experience the vacation of your dreams than traveling with Condor Airlines.

...

Collins Comfort Masters

Here’s 1 way to ensure your family is drinking safe water

Water is maybe one of the most important resources in our lives, and especially if you have kids, you want them to have access to safe water.

(KTAR News Graphic)...

Boys & Girls Clubs

KTAR launches online holiday auction benefitting Boys & Girls Clubs of the Valley

KTAR is teaming up with The Boys & Girls Clubs of the Valley for a holiday auction benefitting thousands of Valley kids.

Extortionist threatens to publish Australian customer data