This article is from the source 'guardian' and was first published or seen on . It last changed over 40 days ago and won't be checked again for changes.

You can find the current article at its original source at https://www.theguardian.com/australia-news/2022/nov/10/abortion-data-from-medibank-hack-posted-on-dark-web-as-clare-oneil-pledges-to-pursue-scumbags

The article has changed 4 times. There is an RSS feed of changes available.

Version 0 Version 1
Abortion data from Medibank hack posted on dark web as Clare O’Neil pledges to pursue ‘scumbags’ Abortion data from Medibank hack posted on dark web as Clare O’Neil pledges to pursue ‘scumbags’
(32 minutes later)
Australian Federal Police warn public it is a criminal offence to seek out the data posted by a Russian ransomware groupAustralian Federal Police warn public it is a criminal offence to seek out the data posted by a Russian ransomware group
Sensitive health data from Medibank, including information about abortions, has been posted on the dark web prompting the minister for home affairs, Clare O’Neil, to pledge police would track down the “scumbags” behind the hack. Sensitive health data from Medibank, including information about abortions, has been posted on the dark web, prompting the minister for home affairs, Clare O’Neil, to pledge police would track down the “scumbags” behind the hack.
On Thursday morning, on a dark web blog linked to the REvil Russian ransomware group, the attacker posted a file labelled “abortions” along side claims they had sought US$10m from Medibank to prevent the leak of the data. On Thursday morning, on a dark web blog linked to the REvil Russian ransomware group, the attacker posted a file labelled “abortions” alongside claims they had sought US$10m from Medibank to prevent the leak of the data.
The data in the file is understood to include procedures claimed by a policy holder related to the termination of pregnancy, including non-viable pregnancy, ectopic pregnancy, molar pregnancy, miscarriages, and readmission for complications. The data in the file is understood to include procedures claimed by a policyholder related to the termination of pregnancy, including non-viable pregnancy, ectopic pregnancy, molar pregnancy, miscarriages, and readmission for complications.
O’Neil told the parliament during Question Time on Thursday that the full weight of the Australian Federal Police and Australian Signals Directorate were coming for those who leaked the information. O’Neil told the parliament during question time on Thursday that the full weight of the Australian Federal Police and Australian Signals Directorate were coming for those who leaked the information.
“I want the scumbags behind this attack to know that the smartest and toughest people in this country are coming up you,”she said. Sign up for Guardian Australia’s free morning and afternoon email newsletters for your daily news roundup
Sign up for Guardian Australia’s free morning and afternoon email newsletters for your daily news roundup
“I want the scumbags behind this attack to know that the smartest and toughest people in this country are coming up you,” she said.
“I want to say, particularly to the women whose private health information has been compromised overnight, as the minister for cybersecurity but more importantly, as a woman, this should not have happened, and I know this is a really difficult time.”“I want to say, particularly to the women whose private health information has been compromised overnight, as the minister for cybersecurity but more importantly, as a woman, this should not have happened, and I know this is a really difficult time.”
O’Neil said she had spoken twice today with the Medibank chief executive, David Koczkar, and made it “abundantly clear of the expectations of the Australian community about what this company owes to its customers given what has transpired here.” O’Neil said she had spoken twice today with Medibank’s chief executive, David Koczkar, and made it “abundantly clear of the expectations of the Australian community about what this company owes to its customers given what has transpired here”.
Medibank would be providing a one-stop-shop for support for customers, and if a larger dump occurs, the health insurer has provided assurances it will have services ready to support customers.Medibank would be providing a one-stop-shop for support for customers, and if a larger dump occurs, the health insurer has provided assurances it will have services ready to support customers.
The Australian Federal Police has warned people not to go seeking out the data themselves, warning it is in breach of Australian privacy laws.The Australian Federal Police has warned people not to go seeking out the data themselves, warning it is in breach of Australian privacy laws.
“They could be committing crimes themselves because there are some privacy considerations and privacy laws that could be being breached,” AFP assistant commissioner cyber command, Justine Gough, said on Wednesday. “They could be committing crimes themselves because there are some privacy considerations and privacy laws that could be being breached,” the AFP assistant commissioner cyber command, Justine Gough, said on Wednesday.
She warned anyone who tries to buy the stolen information would face up to 10 years in jail, and warned against anyone trying to “piggy back” off the hack by blackmailing victims of the attack. She warned anyone who tries to buy the stolen information would face up to 10 years in jail and warned against anyone trying to “piggy back” off the hack by blackmailing victims of the attack.
“The AFP has significant powers within its remit, including legislation that precludes the AFP from revealing when those powers are in use,” she said. “Those powers are a chilling reminder to hackers and those who will attempt to piggyback off those criminals, that the AFP will relentlessly pursue them.” “The AFP has significant powers within its remit, including legislation that precludes the AFP from revealing when those powers are in use,” she said. “Those powers are a chilling reminder to hackers and those who will attempt to piggyback off those criminals that the AFP will relentlessly pursue them.”
The AFP announced on Wednesday that it would expand Operation Guardian – which was set up to protect the 10,000 Optus customers who had their personal information posted online earlier this year – to those Medibank customers exposed.The AFP announced on Wednesday that it would expand Operation Guardian – which was set up to protect the 10,000 Optus customers who had their personal information posted online earlier this year – to those Medibank customers exposed.