Get all your news in one place.
100’s of premium titles.
One app.
Start reading
ABC News
ABC News
National

More stolen Medibank data released, containing information about mental health and chronic conditions

Hackers have released more stolen Medibank data, with the medical records of almost 1,500 customers released on Sunday on the dark web.

According to Medibank, the latest release included people with chronic conditions such as heart disease, diabetes and asthma, people with cancer, people with dementia, people with mental health conditions, people with infections and people who have sustained injuries, amongst other conditions.

Some of the people on the list have had diagnoses that include mental illnesses, or delirium, which is an acute change in mental status that can be triggered by illness, injury, surgery, or medications.

Medibank confirmed they have analysed the file called "STD", which did not contain STD codes. The common condition in this list was anaemia.  

Medibank CEO David Koczkar said the company was doing everything they could to support customers.

"We will continue to support all people who have been impacted by this crime through our Cyber Response Support Program," he said. 

"This includes mental health and wellbeing support, identity protection and financial hardship measures.

"Anyone who downloads this data from the dark web, which is more complicated than searching for information in a public internet forum and attempts to profit from it, is committing a crime.

"The Australian Federal Police have said law enforcement will take swift action against anyone attempting to benefit, exploit or commit criminal offences using stolen Medibank customer data.

"We continue to work closely with the Australian Federal Police who are focused, as part of Operation Guardian, on preventing the criminal misuse of this data."

Mr Koczkar previously said about 480,000 customers health data was believed to have been stolen.

"Again, I unreservedly apologise to our customers," he said. 

"We remain committed to fully and transparently communicating with customers and we will continue to contact customers whose data has been released on the dark web." 

The data released on Sunday included four files containing 1,469 records, including 123 previously released.

Of those, 375 of the 1,496 records do not match against that policy for that procedure, according to Medibank, who said previous files released also have not matched their records. 

The data release comes on top of 1,200 files already published on the dark web, bringing the total to 2,669. 

Hackers have previously demanded $US9.7 million ($15.09 million) in ransom for the records. 

The federal government has backed Medibank's decision not to pay the ransom to prevent the release of customer data.

AFP Commissioner Reece Kershaw confirmed criminals based in Russia had been identified as the culprits behind the Medibank hack — a claim the Russian embassy denies. 

Sign up to read this article
Read news from 100’s of titles, curated specifically for you.
Already a member? Sign in here
Related Stories
Top stories on inkl right now
One subscription that gives you access to news from hundreds of sites
Already a member? Sign in here
Our Picks
Fourteen days free
Download the app
One app. One membership.
100+ trusted global sources.