Health provider MediSecure in administration following data breach

Health provider MediSecure in administration following data breach | Insurance Business Australia

Cyber

Large-scale breach involved personal and health-related data

Cyber

By
Roxanne Libatique

E-prescription provider MediSecure has entered voluntary administration three weeks after its data breach incident.

Last month, the company confirmed a large-scale cybersecurity breach involving personal and health-related data. It implemented measures to reduce further risks to its systems and reported the incident to the Office of the Australian Information Commissioner and other regulatory bodies.

“MediSecure understands the importance of transparency and will provide further updates via our website as soon as more information becomes available. We appreciate your patience and understanding during this time,” it said, adding that it is also working with the Australian Digital Health Agency and the National Cyber Security Coordinator to address the effects of the breach.

“The company has been in contact with the Australian government with respect to providing information in response to that incident,” he said, as reported by ABC. “Our role as administrators and liquidators includes investigating the affairs of the company to identify reasons for its failure, and to examine options that may be available to recover assets for the benefit of creditors of the companies.

“We will be speaking to the Australian government about what they need from the company and the next steps in the response to the cyber incident.”

In an email to customers, the company said its IT systems had been breached, leading to the theft of identification documents.

“Following an extensive investigation of the incident, we have become aware that a scanned image of the ID document you provided at the time of your visit may have been compromised by the attacker,” it said.

Aside from MediSecure and Guardian Childcare, organisations that recently reported major data breaches include: