A network of GPs and skin cancer clinics has been hit by a major cyber-attack in which personal medical records have been stolen.
Partnered Health, which operates 57 clinics across the country, posted an incident report on its website confirming that patients’ medical records were accessed as a result of the cyber breach.
The cyber attack was reported on June 23 and the company is working with agencies such as the Australian Cyber Security Center and police.
Some affected patients were contacted late this evening.
Partnered Health listed 16 clinics where patient information may have been stolen, including personal data and sensitive medical records such as consultation notes, referrals and test results.
It also warns that data such as patient names, contact details, addresses, Medicare and private health insurance data could have been stolen.
These include practices in Melbourne, Sydney, Canberra, Gold Coast, Sunshine Coast and Coffs Harbour.
He listed five more, including several in Western Australia where it was still being investigated whether the parts were stolen.
In an online statement, Partnered Health said it had engaged cyber experts to continue to accurately assess what was stolen, but it is clear that some information was stolen.
“Our investigation to date has confirmed that personal information, including medical information, was taken from some of our network clinics,” the statement said.
“We are continuing our investigation and communicating with patients from the affected clinics.”
Spy agency warns Russian hackers are targeting Australia
The health care provider said it has taken legal steps to try to protect any information it receives.
“To help protect our patients and people, we have obtained a temporary injunction from the Supreme Court of New South Wales ordering us not to use or publish the findings,” it said.
A medical network is warning patients to be wary of scammers who may cite their personal medical records to appear more convincing.
It has contacted Services Australia to provide additional monitoring for anyone whose Medicare data may have been stolen.
Government cybersecurity authorities have recently stepped up warnings for businesses and any other institutions holding sensitive personal data to strengthen their cybersecurity.
Yesterday, the Australian Signals Directorate (ASD), along with partner agencies around the world, warned of a surge in Russian-linked cyber attacks targeting poorly secured router networks, particularly in critical infrastructure.
And ASD has previously warned that artificial intelligence will increase the frequency and sophistication of cyber attacks, urging anyone at risk to strengthen their cybersecurity.
Partnered Health recently announced the acquisition of health insurer Bupa.