• ASX releases
  • Features
  • Gallery
  • Quick facts
  • Contact
  • About Medibank
  • Investor Centre
  • Media releases

    Medibank cybercrime update


    Medibank

    Given the nature of the stolen data that the criminal continues to release on a dark web forum we are in the process of contacting customers, and we urge our customers to reach out for support.

    “We will continue to support all people who have been impacted by this crime through our Cyber Response Support Program. This includes mental health and wellbeing support, identity protection and financial hardship measures,” Medibank CEO David Koczkar said.

    “If customers are concerned, they should reach out for support from our cybercrime hotline, our mental health support line, Beyond Blue, Lifeline or their GP.

    Anyone who downloads this data from the dark web, which is more complicated than searching for information in a public internet forum and attempts to profit from it is committing a crime.

    “The Australian Federal Police have said law enforcement will take swift action against anyone attempting to benefit, exploit or commit criminal offenses using stolen Medibank customer data. We continue to work closely with the Australian Federal Police who are focused, as part of Operation Guardian, on preventing the criminal misuse of this data.

    “I unreservedly apologise to our customers.

    “Our focus remains resolutely on doing everything we can to make sure our customers are supported during this difficult time.

    “These are real people behind this data and the misuse of their data is deplorable and may discourage them from seeking medical care.

    “We remain committed to fully and transparently communicating with customers and we will continue to contact customers whose data has been released on the dark web,” he said.

    Given the sensitive nature of the stolen customer data that is being released on the dark web we continue to ask the media and others to support our ongoing efforts to minimise harm to customers, and not to unnecessarily download sensitive personal data from the dark web and to refrain from contacting customers directly.


    Keep reading