Australian insurer warns of 'distressing' data threat / Photo: © AFP/File
-
Japan's only two pandas to be sent back to China
-
Zelensky, US envoys to push on with Ukraine talks in Berlin
-
Australia to toughen gun laws after deadly Bondi shootings
-
Lyon poised to bounce back after surprise Brisbane omission
-
Australia defends record on antisemitism after Bondi Beach attack
-
US police probe deaths of director Rob Reiner, wife as 'apparent homicide'
-
'Terrified' Sydney man misidentified as Bondi shooter
-
Cambodia says Thai air strikes hit home province of heritage temples
-
EU-Mercosur trade deal faces bumpy ride to finish line
-
Inside the mind of Tolkien illustrator John Howe
-
Mbeumo faces double Cameroon challenge at AFCON
-
Tongue replaces Atkinson in only England change for third Ashes Test
-
England's Brook vows to rein it in after 'shocking' Ashes shots
-
Bondi Beach gunmen had possible Islamic State links, says ABC
-
Lakers fend off Suns fightback, Hawks edge Sixers
-
Louvre trade unions to launch rolling strike
-
Far-right Kast wins Chile election landslide
-
Asian markets drop with Wall St as tech fears revive
-
North Korean leader's sister sports Chinese foldable phone
-
Iran's women bikers take the road despite legal, social obstacles
-
Civilians venture home after militia seizes DR Congo town
-
Countdown to disclosure: Epstein deadline tests US transparency
-
Desperate England looking for Ashes miracle in Adelaide
-
Far-right Kast wins Chile election in landslide
-
What we know about Australia's Bondi Beach attack
-
Witnesses tell of courage, panic in wake of Bondi Beach shootings
-
Chiefs out of playoffs after decade as Mahomes hurts knee
-
Chilean hard right victory stirs memories of dictatorship
-
Volunteers patrol Thai villages as artillery rains at Cambodia border
-
Apex Discovers Mineralized Carbonatite at its Lac Le Moyne Project, Québec
-
Lin Xiang Xiong Art Gallery Officially Opens
-
Fintravion Business Academy (FBA) Aligns Technology Development Strategy Around FintrionAI 6.0 Under Adrian T. Langshore
-
Pantheon Resources PLC - Retirement of Director
-
HyProMag USA Provides Positive Update to Valuation Of Expanded Dallas-Fort Worth Plant And Commences Strategic Review to Explore a U.S. Listing
-
Relief Therapeutics and NeuroX Complete Business Combination and Form MindMaze Therapeutics
-
Far-right candidate Kast wins Chile presidential election
-
Father and son gunmen kill 15 at Jewish festival on Australia's Bondi Beach
-
Rodrygo scrapes Real Madrid win at Alaves
-
Jimmy Lai, the Hong Kong media 'troublemaker' in Beijing's crosshairs
-
Hong Kong court to deliver verdicts on media mogul Jimmy Lai
-
Bills rein in Patriots as Chiefs eliminated
-
Chiefs eliminated from NFL playoff hunt after dominant decade
-
Far right eyes comeback as Chile presidential polls close
-
Freed Belarus dissident Bialiatski vows to keep resisting regime from exile
-
Americans Novak and Coughlin win PGA-LPGA pairs event
-
Zelensky, US envoys to push on with Ukraine talks in Berlin on Monday
-
Toulon edge out Bath as Saints, Bears and Quins run riot
-
Inter Milan go top in Italy as champions Napoli stumble
-
ECOWAS threatens 'targeted sanctions' over Guinea Bissau coup
-
World leaders express horror at Bondi beach shooting
NYSE - LSE
Australian insurer warns of 'distressing' data threat
A major Australian health insurer warned Tuesday of a "distressing" threat by a purported hacker to release data within 24 hours from a hack affecting 10 million people.
Medibank Private, one of Australia's largest insurers, told customers to be "vigilant" after the reported threat, issued a day after it had ruled out paying any ransom demand.
The warning came a day after a hack originally thought to have breached the data of 3.9 million customers had in fact given access to the names, birth dates, addresses, phone numbers and emails of about 9.7 million former and existing clients.
On Tuesday, an anonymous poster on a hacking blog -- widely cited by Australian media -- said "data will be publish in 24 hours".
It was not possible to confirm whether the poster was connected to the hack or had access to people's stolen information.
"We knew the publication of data online by the criminal could be a possibility, but the criminal's threat is still a distressing development for our customers," Medibank chief executive David Koczkar said, calling for customers to be "vigilant".
"We unreservedly apologise to our customers," he added, describing the "weaponisation" of their data as malicious.
The hacker could also attempt to contact customers directly, the company warned.
The data breach of Medibank -- one of Australia's largest insurers -- included 1.8 million international customers.
- 'Betrayal' -
The company had said in Monday's announcement that they believe "all of the customer data accessed could have been taken by the criminal", which contained people's health claims along with codes exposing their diagnoses and medical procedures.
Passport numbers and the visa details of international students were also part of the data hack.
Medibank said it was working with the Australian government and with the police, who were trying to prevent the sharing and sale of the stolen data.
Cybercrime experts had advised that paying a ransom had only a "limited chance" of ensuring the return of the stolen data, Koczkar said, adding that it could encourage the direct extortion of its clients.
"It is for these reasons that we have decided we will not pay a ransom for this event," he said.
Two law firms said Tuesday they had joined forces to investigate a possible class action lawsuit against Medibank.
"We believe the data breach is a betrayal of Medibank Private's customers and a breach of the Privacy Act," said a joint statement by Bannister Law and Centennial Lawyers. "Medibank has a duty to keep this kind of information confidential."
The Medibank hack followed an attack on telecom company Optus in September that exposed the personal information of some nine million Australians -- almost a third of the population.
W.Nelson--AT