"Medibank Backtracks: All Customer Data Was Exposed to Hackers"

Australian health insurance giant Medibank has announced that all of its customers’ personal information was accessed by ransomware actors a few days after playing down the impact of a recent breach.  The company admitted in a new statement that the threat actors had compromised personal data on all customers, including international students and policyholders with Medibank business ahm.  This could mean that four million Australians have been exposed to the risk of follow-on fraud and phishing attacks.  The data stolen include names, addresses, dates of birth, Medicare numbers, policy numbers, phone numbers, claims data, and even passport numbers for some international students.  The criminal also claimed to have stolen other information, including data related to credit card security, and the company is currently in the process of verifying this allegation.  The company noted that its procedures restrict them from retaining full credit card numbers, and they do not hold CVV numbers.  Reports have claimed the breach could cost the firm tens of millions of dollars as it doesn’t have cyber insurance.

Infosecurity reports: "Medibank Backtracks: All Customer Data Was Exposed to Hackers"