Hackers leak Australian health records on dark web

Data stolen from a major Australian health insurance company that previously refused to pay the ransom

SYDNEY: Hackers on Wednesday began leaking sensitive medical records stolen from a major Australian health insurance company that had previously refused to pay the group’s ransom.

Medibank told investors and customers that a “sample” of data from about 9.7 million customers was posted on a “dark web forum.”

Names, dates of birth, addresses, passport numbers and medical claims information were among the sensitive personal data that was disclosed anonymously early Wednesday.

Hackers are leaking Australian health data on the dark web

Medibank said more leaks were likely.

“The files appear to be an example of data that we previously found the perpetrator had access to,” the company said in a statement to the Australian Securities Exchange.

“We assume that the criminal continues to post files on the dark web.”

Medibank has previously refused to pay a ransom to prevent hackers from leaking data because it could lead to more crimes and not guarantee that the information is secure.

“Based on the extensive advice we have received from cybercrime experts, we believe there are limited options for paying the ransom to recover our customers’ data and prevent its spread,” said David Kochkar, president of Medibank.

The leaked data was posted on a dark web forum that cannot be found using traditional web browsers.

“We will continue to partially distribute data,” the alleged hackers on the forum said.