“Based on the extensive advice we have received from cybercrime experts we believe there is only a limited chance paying a ransom would ensure the return of our customers’ data and prevent it from being published. In fact, paying could have the opposite effect and encourage the criminal to directly extort our customers, and there is a strong chance that paying puts more people in harm’s way by making Australia a bigger target,” Medibank said.
Hackers claiming to be responsible for the Medibank data breach have released the personal information of hundreds of customers on the dark web.
The ransomware hackers begun posting names, addresses, birthdates as well as Medicare details in the early hours of this morning in retaliation to not receiving their ransom.
“Looking back that data is stored not very understandable format (table dumps) we’ll take some time to sort it out,” the group said in a blog post.
“We’ll continue posting data partially, need some time to do it pretty.”
Hackers also released WhatsApp messages between themselves and Medibank officials.
Medibank has said that hackers may try to contact customers directly but that they’re working with the Australian government, cyber security, and police officials to prevent further sharing of information.
The release of information comes just a few days after Medibank said they would not be paying the ransom as it would potentially encourage further crime.
“You just can’t trust the criminals. Our advice is that not paying the ransom will provide the best security for our customers and also other Australians,” Chief executive David Koczkar told Guardian Australia.
The health insurance company has said that all 9.7 million current and former customers have had their information obtained. This includes 5.1 million Medibank customers, 2.8 million ahm customers and 1.8 million international customers.
It’s believed that credit card and banking details have not been accessed.
Home Affairs Minister Clare O’Neil said the government stands behind Medibank’s decision not to pay the ransom.
“Cyber criminals cheat, lie and steal,” she said.
“We urge people who may be affected to be on high alert for attempts by cyber criminals to extort individuals over their personal information.
“Cyber criminals commit to undertaking actions in return for payment, but so often re-victimise companies and individuals.”
Several reports suggest the FBI is now helping AFP officers with their investigations into the hackers behind the Optus and Medibank hacks.
However, two law firms have said they will begin a class action against Australia’s largest health insurer for failing to protect customers’ data.
