Suspected Medibank hacker releases sample of customer data

The alleged Medibank hacker has released a sample of user data obtained in the cyber attack on the healthcare giant.

The alleged hacker updated his previous post on the dark web, which had a quote from Confucius and a meme featuring Super Mario characters.

The alleged Medibank hacker released a sample of user data obtained in the cyber attack on the health giant on Wednesday, November 9, 2022. (Composite)

“Looking back the data is stored in an unintelligible format (table dumps), we will take some time to sort this out and publish a small part of the data, in” human readable format (sample in json file) “, it also publishes all the raw data,” the hacker wrote.

“We will continue to release data partially, we need some time to get it right.”

Included in the post is a dark web link to some files, which 9News has seen, that appear to contain valid details of Australians and their healthcare interactions.

9News will not publish this information.

It includes full names, telephone numbers, addresses, Medicare numbers, dates of birth, sexes and the names of healthcare providers and codes used by Medibank to list diagnosis and treatment.

It is not yet known how much data the hackers are willing to release or whether they are making additional ransom demands from Medibank in the meantime.

The alleged hacker posted a meme and a quote that read “A man who has made one mistake and doesn’t correct it is making another mistake.” (Supplied)

WhatsApp messages between the hackers and representatives of Medibank, including the company’s CEO David Koczkar, also appear to have been released, effectively releasing Koczkar’s private phone number.

“We believe there is only a limited chance that paying a ransom will secure the return of our customers’ data and prevent it from being published,” said Medibank CEO David Koczkar.

The health insurer confirmed hackers had accessed 9.7 million Australians’ basic personal information, including 5.1 million Medibank customers, 2.8 million AHM customers and 1, 8 million international customers.

The scam text tricks drivers into thinking they haven’t paid a toll

Medibank’s share price fell to its lowest level in two years yesterday.

Names, dates of birth, addresses, phone numbers and email addresses were previously confirmed to have been part of the data breach.

The dark web forum in question was used in 2021 by a Russian-linked ransomware group and abandoned after many in the group were arrested by Russian authorities, but has returned to posting hacked data in recent months.

Leave a Comment

Your email address will not be published. Required fields are marked *