Scathing report on Medibank cyberattack highlights unenforced MFA

June 18, 2024 at 01:32PM Australia’s Information Commissioner’s report identified operational failures that allowed a breach of Medibank’s network, exposing data from 9.7 million individuals. A contractor’s compromised credentials were exploited, granting unauthorized access. The breach involved a ransomware gang and a sanctioned Russian national. The report highlights the importance of implementing multi-factor authentication to … Read more

US, UK, Australia Sanction Russian Man Over Ransomware Attack on Healthcare Insurer 

January 24, 2024 at 05:06AM The US, UK, and Australia have sanctioned Russian national Alexander Ermakov for his alleged involvement in the 2022 ransomware attack on Australia’s Medibank. Ermakov was linked to the cyberattack and targeted for the first time under Australian cyber sanction powers. The US and UK followed suit, imposing similar sanctions in … Read more