Medibank Details

    Organization Logo

    Medibank

    Melbourne, Australia employees • Healthcare

    Industry

    Healthcare

    Security Incidents

    1

    Medibank Private Limited, better known as simply Medibank, is one of the largest Australian private health insurance providers, covering over 4 million people in 2024.

    Security Incidents

    Medibank Breach of Oct 2022
    Severity Score
    Significant to High

    Type

    Data Breach

    Summary

    In October 2022, Medibank, a major Australian health insurer, suffered a significant data breach, compromising personal and health information of approximately 9.7 million individuals. The breach occurred after a threat actor accessed the network using credentials from a Medibank contractor's compromised personal computer. These credentials allowed access to the Medibank network via their Global Protect VPN, which lacked multi-factor authentication at the time. The attacker exfiltrated around 520 gigabytes of sensitive data, including names, dates of birth, addresses, Medicare numbers, and det...
    Show more

    Severity

    In a notable cybersecurity incident impacting Medibank, a threat actor gained unauthorized access to Medibank's systems by exploiting credentials that were inadvertently saved to an IT service desk operator's personal computer. The attack bypassed multi-factor authentication requirements, allowing the threat actor to infiltrate Medibank’s network, access sensitive systems, and exfiltrate approximately 520 gigabytes of personal and health data belonging to Medibank’s customers. The stolen data, including highly confidential health information, was later published on the dark web, highlighting s...
    Show more

    Impact

    The Medibank incident constituted a severe data breach, as the threat actor managed to exfiltrate approximately 520 gigabytes of sensitive customer data, including names, dates of birth, addresses, Medicare numbers, health-related information, and more. This exposed personal and health data presents significant risks for Medibank customers, including the potential for identity theft and other malicious activities. Furthermore, numerous Medibank IT systems, including those containing customer data, remained accessible to the threat actor for an extended period, which underscores a significant l...
    Show more

    KEEP YOUR ENVIRONMENT SECURE

    Weak credentials are the leading cause of breaches. Beyond Identity can help.

    See MFA exploits in action
    Watch how adversaries exploit companies in quick videos