MediSecure, an Australian prescription delivery service provider, revealed that roughly 12.9 million people had their personal and health information stolen in an April ransomware attack.
The company was
forced to shut down its website and phone lines to contain the attack, disclosing it on May 16 as a "cyber security incident."
At the time, the Australian National Cyber Security Coordinator (NCSC), who was helping MEdiSecure to mitigate the breach, described it as a "large-scale ransomware data breach."
While investigating the ransomware attack, MediSecure found that the threat actors stole 6.5TB of data, which has since been restored from a server backup.
"On 13 April 2024, MediSecure was made aware of the Incident when it was discovered a database server had been encrypted by suspected ransomware. On 17 May 2024, with the assistance of IT specialists, MediSecure successfully restored a complete backup of the server and took immediate steps to investigate the impacted information," the company
said in a Thursday statement.
