There is an update to a data breach reported in February involving Australia IVF giant Genea. ABC News in Australia now reports:
Patients of Australia’s third-largest IVF provider, Genea, have been informed that their sensitive information — including medical history — has been posted on the dark web.
The update comes more than five months after the ABC revealed cyber criminals had targeted the fertility clinic, which is used by tens of thousands of people across the country.
In emails sent to affected patients over the past few days, Genea CEO Tim Yeoh confirmed the company had wrapped up its probe into the February cyber attack: “We are not notifying you about a new incident”.
Emails obtained by the ABC state the data includes patients’ full names, addresses, phone numbers, dates of birth, Medicare card numbers, medical diagnosis, and “clinical information related to the services that you received from Genea or other health service providers and/or medical treatment”.
Read more at ABC.
Many patients are upset that they weren’t notified sooner and that Genea has not been more transparent about the breach.
As reported elsewhere by DataBreaches.net, the attack was the responsibility of the Termite ransomware group, which added the incident to its dark web leak site in February and has since leaked approximately 700 GB of files containing sensitive patient records and other information.
