Optimum Health Solutions, an Australian preventative healthcare operator, has had employee and patient data stolen and shared on the darknet by a ransomware group, according to reports.
The posted data included employee data such as passport details and patients' medical files such as National Disability Insurance Scheme (NDIS) agreements and payment details. It also included emails and other employee and patient credentials.
Ransomware group Rhysida posted 186 gigabytes of the data composed of over 108,000 files belonging to Optimum Health Solutions' employees and patients on its leak site, according to a report by CyberSecurity Connect.
Rhysida claimed that the information posted on the site comprises 85% of the total data stolen, with the rest allegedly sold.
VPN services provider Surfshark's global study recently revealed that Australia ranked sixth globally for data breaches in the second quarter of 2023, with nearly 2 million accounts leaked during the period.
“Such alarming increase in data breaches highlights that the current data protection measures are not sufficient, and sensitive information remains at risk as cybercriminals continue to access it in ever higher numbers,” said Surfshark lead researcher Agneska Sablovskaja.
Earlier this month, the National Disability Insurance Agency (NDIA) reported that NDIS participants, prospective participants, their families and carers, and staff could have been affected by law firm HWL Ebsworth’s data breach.
