Harry Perkins Institute of Medical Research Details

    Organization Logo

    Harry Perkins Institute of Medical Research

    Perth, Western Australia250 employees • Healthcare

    https://perkins.org.au/
    Australia

    Industry

    Healthcare

    Security Incidents

    1

    The Harry Perkins Institute of Medical Research is a prominent biomedical research institute based in Perth, Western Australia. Founded in 1998 as the Western Australian Institute for Medical Research (WAIMR), it was renamed in 2013 in honor of Harry Perkins, a significant figure in the region's medical research community. The institute concentrates on innovative research in cancer, cardiovascular disease, diabetes, and genetic diseases. It integrates clinical and laboratory research to improve patient outcomes and has made substantial contributions to medical advancements through its work.

    Security Incidents

    Harry Perkins Institute of Medical Research Breach of Jul 2024
    Severity Score
    Moderate to Significant

    Type

    Corporate Breach

    Summary

    The Harry Perkins Institute of Medical Research experienced a cyberattack executed by the MEDUSA ransomware group, which resulted in the exfiltration of 4.6 TB of internal building camera recordings. The attackers demanded a ransom of $500,000, with an incremental daily increase of $10,000 if unpaid. MEDUSA has set a deadline of July 12, while also offering to sell the data to others or delete it for the same ransom. The institute, which is among Australia's leading medical research centers, has yet to confirm the attack publicly. MEDUSA operates as a Ransomware-as-a-Service (RaaS) platform an...
    Show more

    Severity

    The ransomware attack allegedly carried out by the MEDUSA group on the Harry Perkins Institute of Medical Research represents a significant threat. With 4.6 TB of internal building camera recordings exfiltrated, the breach could jeopardize both internal security and the privacy of individuals associated with the institute. The ransom demand of $500,000, escalating daily by $10,000, and the threat to auction the data further exacerbate the situation.

    Impact

    This incident primarily involved the exposure of internal surveillance data, which could raise significant privacy concerns for individuals captured on those recordings. No other customer data or intellectual property was reported stolen, and the institute's critical systems and services have not been confirmed offline at this time. However, the ransomware group's demands and the potential sale or deletion of the compromised data underscore the severe implications for the institute’s security posture and operation.