Home Lifestyle What affected customers can do after a cyber attack

What affected customers can do after a cyber attack


Medibank customers have been offered various forms of advice and support after an internal investigation revealed that criminals had access to all the personal data of 3.9 million customers and a significant amount of health claims data.

Although it was initially believed that only customers with ahm policies and international students were affected, the insurance company has now said that all customers were affected by the hack.

The hacker gained access to very specific claims data, which could include the medical conditions a customer was diagnosed with and the treatment they were prescribed.

Camera iconAffected customers can take various measures. NCA NewsWire / Paul Jeffers credit: News Corp Australia


  • Replace their Medicare card, which can be done online through MyGov.
  • If they are concerned that their identity has been compromised or they are a victim of fraud, contact their bank immediately and call IDCARE on 1800 595 160.
  • If they believe there has been unauthorized activity using their Medicare number, they can call Australia’s fraud and identity theft helpline.
  • Protect their devices and monitor their devices and accounts for unusual activity, and make sure they have the latest security updates.
  • Enable multi-factor authentication for all accounts.
  • Be wary of scams linked to Medibank Private.
  • All Medibank and ahm customers can contact their cyber response hotlines by phone (for ahm customers 13 42 46 and for Medibank customers 13 23 31) or visit the information page at site for any updates.
  • Customers can also speak to Medibank’s Mental Health Specialists by phone 24 hours a day for advice or support on mental health or wellbeing issues (1800 644 325).
  • Take advantage of Medibank’s cybercrime customer support package designed for affected customers (this includes financial support, access to specialist identity protection advice and resources from IDCARE, free identity monitoring services for customers who have had their primary identity document compromised and compensation fees for reissuing identity documents)

“We have evidence that the perpetrator deleted some of our customers’ personal data and health claims data, and it is now likely that the perpetrator has stolen additional personal and health claims data,” Medibank said in a statement.

“As a result, we expect that the number of affected customers could increase significantly.”

This could potentially include highly personal information relating to sexual health, serious diagnoses such as cancer, whether the woman had an abortion, and whether the person was being treated for a mental condition or substance abuse.

Medibank chief executive David Kochkar has again apologized for the impact on customers.

“I apologize unreservedly to our customers. This horrific crime is a crime designed to cause maximum harm to the most vulnerable members of our community,” he said.

A computer hacker
Camera iconInitially, there was “no evidence” that sensitive data, including customer data, had been accessed. General image credit: source

The insurance company confirmed that the hack did not affect customers’ access to healthcare services and that its IT systems have not been encrypted by ransomware so far.

In response to the attack, they strengthened existing monitoring, added additional detection and forensics capabilities to their systems, and increased analytical support through specialized third parties.

During a meeting on Tuesday, Medibank’s board said it was withdrawing the company’s policyholder growth forecast for the 2023 financial year.

Medibank shares fell to a 17-month low of $2.95 on Wednesday morning.

The insurance company estimated that, given that it did not have cyber insurance, cybercrime would cost investors between $25 million and $35 million.

This does not include any costs accrued for recovery or legal fees.

Medibank will provide an update on the investigation into the hack at its annual general meeting on 16 November.


Previous articleFormer AFL player Shaun Smith unimpressed by league’s response to concussion researcher’s plagiarism
Next articleTreasurer Jim Chalmers defends the first federal budget