Attacks Cloud Data Executive Decisions IoT Malware Mobile Network Security Strategy Threat Defense

Hacker releases stolen Medibank data on the dark web

The Australian Federal Police has said it will “relentlessly pursue” those responsible

Add bookmark
Olivia Powell
Olivia Powell
11/09/2022
Hacker releases stolen Medibank data on the dark web

The hacker that stole 200GB worth of customer data from Australian health insurance provider Medibank has released files containing some of the data on the dark web.

The data leak comes after Medibank publicly refused to pay the hacker a ransom on November 7. This prompted the malicious actor to post a threat on November 8 on dark web forum, BreachForums. It stated  they would release the data in 24 hours.

The data released so far includes names, addresses, dates of birth, phone numbers, email addresses, Medicare numbers, passport numbers and some health claims data. Medicare has said it expects the malicious actor to continue to release customer data and has warned its customers to “stay vigilant” in the face of potential phishing attacks and extortion attempts.

The company said it will “work around the clock to inform customers of what data [it] believe[s] has been stolen and any of their data included in the files on the dark web”, as well as providing advice for those who have had their data leaked.

Medibank CEO David Koczkar said the company “unreservedly apologize[s]” to its customers and called the cyber attack and leak a “criminal act designed to harm our customers and cause distress”.

Medibank continues to work with the Australian Government, including the Australian Cyber Security Centre and the Australian Federal Police (AFP), which is investigating the cyber crime.

The AFP is working with those in the public and private sector to identify anyone who buys or sells personally identifying information and has said it will “relentlessly pursue” the hackers. Through Operation Pallidus, an operation focused on the data breach, the AFP has joined forces with Commonwealth agencies and Five Eyes Law Enforcement partners, which among others includes the FBI.

Additionally, the organization has extended the use of Operation Guardian, which was set up to help more than 10,000 people who had their personal details released as part of the Optus data breach, to Medibank customers affected by the cyber attack and data leak.  

Tags: data leak data breach cyber crime phishing cyber attack Medibank Optus Australian Federal Police FBI BreachForums

Upcoming Events

16th Automotive Cybersecurity Summit 2026

March 18 - 19, 2026

Sheraton Ann Arbor Hotel, Ann Arbor, Michigan

Register Now View Agenda View Event
16th Automotive Cybersecurity Summit 2026

Digital Identity Week

1st - 2nd September 2026

Sydney, Australia

Register Now View Agenda View Event
Digital Identity Week

Latest Webinars

From Dependencies to Defences: Navigating Software Supply Chain Security

2025-09-24

11:00 AM - 12:00 PM SGT

Learn how to defend your software supply chain from dependency threats and build resilient security...

From Dependencies to Defences: Navigating Software Supply Chain Security

Unpacking global regulatory frameworks to enhance third-party operational resilience

2024-11-14

11:00 AM - 12:00 PM EST

Join this webinar to explore the resilience-focused requirements of DORA, NIS2 and other global regu...

Unpacking global regulatory frameworks to enhance third-party operational resilience

Preventing financial and reputational risk with process intelligence

2024-05-23

11:00 AM - 12:00 PM EDT

Learn how to manage risk stemming from poorly controlled processes in a collaborative way

Preventing financial and reputational risk with process intelligence

Recommended

info@cshub.com/r/n

We hope you enjoy All Access from CS Hub!!<\/p>\r\n<p>Best Regards,<\/p>\r\n<p><a href=https://www.cshub.com/"https:////www.cshub.com///" target=\"_blank\">CS Hub Team<\/a><\/p>\r\n<p>P.S. Be sure to check out our other upcoming <a href=https://www.cshub.com/"https:////www.cshub.com//events?filter_format=ONLINE\%22 target=\"_blank\">All Access events here<\/a>.<\/p>\r\n<p>--------------------------------<\/p>\r\nConnect with us on Social Media: <a href=https://www.cshub.com/"https:////www.linkedin.com//groups//12067996///" target=\"_blank\">LinkedIn<\/a> | <a href=https://www.cshub.com/"https:////twitter.com//CSHubUSA/" target=\"_blank\">Twitter<\/a><\/p>\r\n<p>--------------------------------<\/p>\r\n<p>FAQS<\/p>\r\n<p><b>Can I invite my colleagues?<\/b><br>Yes of course! Please send them this link so they can register for free! [WebUrl]<\/p>\r\n\r\n<p><b>How do I access the sessions?<\/b><br>\r\nAll Access is run on Zoom Events. You should receive an email shortly from Zoom Events with your unique All Access link to the event lobby. Please hold on to that email ahead of the event. We\u2019ll also send you a reminder 24 hours before we go live!<\/p>\r\n\r\n<p><b>Will the agenda be updated?<\/b><br>\r\nYes, the agenda will be continuously updated on the website with the latest sessions & speakers. As we get closer to the event, also look out for our weekly updates which will also include the latest updates information and link to access the event.<\/p>\r\n<p><b>Can I access the sessions On Demand?<\/b><br>\r\nEvery session will be available after the event via the event lobby. We\u2019ll also send you a reminder about the On Demand sessions which will be sent to you after the event is over.<\/p>\r\n<p>--------------------------------<\/p>\r\n<p>RELATED RESOURCES TO READ BEFORE YOUR EVENT<\/p>\r\n<ul>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//executive-decisions//reports//cs-hub-mid-year-market-report-2022?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">CS Hub Mid-Year Market Report 2022<\/a><\/li>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//security-strategy//reports//ciso-strategies-for-proactive-threat-prevention?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">CISO strategies for proactive threat prevention<\/a><\/li>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//security-strategy//reports//how-to-strengthen-email-security-and-protection-against-advanced-ransomware-attacks?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">How to strengthen email security and protection against advanced ransomware attacks<\/a><\/li>\r\n<\/ul>","event_registration_srs_confirmation_email":null,"assets_from_cdn":true},"bant_disabled":1,"sponsorship_disclaimer":null,"sponsorship_disclaimer_text":null,"sponsorship_disclaimer_checkbox_disabled":0,"ext_treat_id":null,"recording_url":null,"file_attachment":null,"ingo_enabled":0,"ingo_activator_id":null,"ingo_autofiller_id":null,"ingo_amplifier_id":null,"ingo_authorizer_id":null,"restricted_content":0,"featured_events_embedded":[],"featured_content_embedded":[{"id":"633c29fa2d36014b536f4a98","name":"Data breach sees Telstra employees\u2019 details posted online","description":"The details of 30,000 employees have been shared on a hacking forum","file":null,"url":"\/attacks\/news\/data-breach-sees-telstra-employees-details-posted-online"},{"id":"62ff6fc7b962cc3fb47d87ba","name":"Data breaches on gaming sites are becoming more common","description":"Cyber Security Hub takes a deep dive into why gaming sites may be a target for hackers","file":null,"url":"\/attacks\/articles\/data-breaches-on-gaming-sites-are-becoming-more-common"},{"id":"632b1ade91b87b33247b657a","name":"Revolut data breach exposes information for more than 50,000 customers","description":"The fintech company suffered a data breach after a third party gained access to its database","file":null,"url":"\/attacks\/news\/revolut-data-breach-exposes-information-for-more-than-50000-customers"},{"id":"634ed20078595a64b9157129","name":"MyDeal data breach impacts 2.2 million people","description":"The data was exposed via a compromised user credential","file":null,"url":"\/attacks\/news\/mydeal-data-breach-impacts-22-million-people"},{"id":"630f1f657e0c653b956d1017","name":"Student loan data breach leaks 2.5 million social security numbers","description":"Bad actors may have gained access to millions of users\u2019 information between June and July","file":null,"url":"\/attacks\/news\/student-loan-data-breach-leaks-25-million-social-security-numbers"}],"featured_content_portal_embedded":null}" >

FIND CONTENT BY TYPE

News Case Studies Interviews White Papers Videos

Cyber Security Hub COMMUNITY

About Us Power10 Contact Us Advertise with us Cookie Policy User Agreement Become a Contributor All Access from CS Hub Become a Member Today Media Partners

ADVERTISE WITH US

Advertise Now

JOIN THE Cyber Security Hub COMMUNITY

Join CSHUB today and interact with a vibrant network of professionals, keeping up to date with the industry by accessing our wealth of articles, videos, live conferences and more.

Cyber Security Hub, a division of IQPC

© 2026 All rights reserved. Use of this site constitutes acceptance of our User Agreement, Privacy Policy and Cookies Settings.

Careers With IQPC | Contact Us | About Us | Cookie Policy