Medibank 2022 Breach: 9.7 Million Australian Health Records Exposed
Russian cybercriminals stole health records for 9.7 million Australians including sensitive diagnoses and mental health data. Medibank refused ransom and data was published.
Unlock Full Privacy Intelligence
Get deep-dive reports on every company that touches your data. SeekerPro members see breach timelines, DSAR success rate...
Learn MoreAudit Your Site Free
Run a full privacy and compliance audit on any website in 60 seconds. NexusBro scans cookie consent, tracker behavior, a...
Learn MoreAutomate Privacy Compliance
Stop wasting hours on manual DSAR filings and cookie consent management. BliniBot handles the busywork so your team can ...
Learn MoreData Types Exposed
Response Timeline
October 12 2022: Unusual activity detected
October 25 2022: Public disclosure
November 2022: Medibank refuses ransom; data published on dark web
2023: Russian national Aleksandr Ermakov sanctioned
Detailed Analysis
The Medibank breach was particularly harmful because it exposed sensitive health claims data including mental health treatment, substance abuse treatment, pregnancy termination records, and HIV status. When Medibank refused to pay, attackers published data in categorized batches organized to cause maximum embarrassment.
The breach at Medibank exposed 9.7 million records through stolen credentials purchased on dark web. 9.7 million current and former Medibank customers The incident highlights the ongoing challenges organizations face in protecting sensitive user data against increasingly sophisticated attack vectors. Security researchers have noted that breaches of this magnitude often result from a combination of technical vulnerabilities and organizational failures in security practices.
Current status: Data published on dark web; Russian national sanctioned; Medibank did not pay ransom. Affected users should take immediate steps to protect their accounts, including changing passwords, enabling multi-factor authentication, and monitoring financial accounts for unauthorized activity. Filing a DSAR with Medibank can help you understand what data was exposed and request its deletion.
What To Do If Affected
- Change your password immediately on this service and any accounts using the same password
- Enable two-factor authentication on all critical accounts
- Monitor your credit reports for unauthorized activity
- Consider placing a credit freeze with major bureaus
- File a complaint with your local data protection authority
Protect Your Data Across Every Platform
Tools trusted by thousands of privacy-conscious users worldwide
No card charged today. Cancel anytime.
Frequently Asked Questions
How many records were affected in the Medibank breach?
The Medibank data breach affected 9.7 million records. Data types exposed include: names, dates of birth, phone numbers, email addresses, Medicare numbers, health claims including diagnoses, mental health records, pregnancy records.
What should I do if I was affected by the Medibank breach?
If you were affected, change your passwords immediately, enable two-factor authentication, monitor your credit reports, and consider placing a credit freeze. You can also submit a DSAR to Medibank requesting deletion of your data.
Is there compensation for Medibank breach victims?
Data published on dark web; Russian national sanctioned; Medibank did not pay ransom Check if a class action settlement exists and whether you are eligible to file a claim.