Incident: Cybercriminals access patient information at Melbourne’s Royal Women’s Hospital | 7News

Posted by Steven Kirby | Oct 5, 2023 | 7 NEWS Australia, Australian InfoSec Incidents 2023, Data Breach, Medical and Health Care, Victoria | 0 |

Australian Patient Data Breach, 05 October 2023

Personal data of almost 200 patients exposed in hack of Melbourne hospital staff member’s email

Worker sent details about the patients to their personal email account, which was later hacked.

Source: Cybercriminals access patient information at Melbourne’s Royal Women’s Hospital | 7News

View more incidents from Medical and Health Care sector and incidents from Victoria.

The private details of almost 200 patients being treated at a major Melbourne hospital may have been accessed by online criminals.

On Thursday, the Royal Women’s Hospital notified 192 patients their data might have been compromised.

The hospital says it has not been hit by a cyberattack and the breach was sparked by a worker who sent details about the patients to their personal email account in a bid to co-ordinate appointments and treatment.

A forensic investigation was conducted by cyber security experts and the majority of the affected patients were notified on Thursday morning.

The remainder will be notified by registered mail.

About The Author

Steven Kirby

I provide independent and practical consultancy services through raising awareness and fostering the energy for change that delivers improved business management of information security governance, risk and compliance.

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

More Australian News

Australian Information Commissioner Refuses to Investigate Employer Accessing Personal Emails
by GuardianAus on December 6, 2023
The Australian information commissioner refused to investigate an employer that allegedly accessed an employee’s personal emails, on the grounds the …
How the latest Privacy Act changes will impact small retailers - retailbiz
by by Dr Philip Bos on December 6, 2023
The Australian government just threw a curveball at the approximately 2.3 million small businesses in Australia with a shakeup of the Privacy Act. …
Optus confirms it has paid cash as compensation to customers affected by nationwide outage
by By business reporter Kate Ainsworth on December 6, 2023
Optus has confirmed it has paid compensation in cash to customers affected by its nationwide outage in early November, after the telco was widely …
Gov may mandate anti-scam strategy for businesses
by Kate Weber on December 5, 2023
Businesses could be made to develop, maintain, and implement an anti-scam strategy, under regulations being canvassed by the government. The proposal …
Westpac outage resolved after thousands of customers unable to access their accounts overnight following 'routine technology update'
by By Tom Williams on December 4, 2023
Westpac says its mobile and online banking services are "now restored and running as usual" after an overnight outage left some customers unable to …
Cyber attack on Sydney radiology company | 9 News Australia
by 9 News Australia on December 2, 2023
Police and cyber security experts are investigating an attack on a Sydney radiology company as fears of personal data being compromised lingers. | Subscribe ...
OAIC alleges Australian Clinical Labs hack resulted from lacklustre security measures
by Daniel Croft on December 1, 2023
Australian Clinical Labs (ACL) parent company Medlab back in February 2022 announced that it had suffered a cyber attack at the hands of the Quantum …
Government boosts Digital ID funding by $145.5m
by Ry Crozier on December 1, 2023
The federal government is set to put an extra $145.5 million into expanding the Digital ID system and scheme over the next four years, adding to the …
Services Australia vets customer data after Brisbane medical group breach
by Ry Crozier on December 1, 2023
Top Health Doctors, a Brisbane-based GP and skin cancer clinic group, experienced an email account compromise incident in September that may have …
Queensland passes mandatory data breach notification scheme
by Ry Crozier on November 30, 2023
Queensland’s parliament has passed a mandatory data breach notification scheme, affecting state agencies from mid-2025 and local governments from …

Weekly Australian News and Monthly Incident Review Emails

No advertisements, marketing, sales, or unsolicited emails. Your email address is ONLY used to send the publications listed above.

Featured

Incident: NDIA data breach claimed to impact 11,000 "records" | iTnews

Featured

Incident: Port Adelaide Football Club Hackers post Port files online

Incident: TissuPath data breach victim upset by delayed notification | ABC News (Australia)

Incident: Major Australian port operator shuts down amid cyber security incident, impacting goods in and out of the country | ABC News (Australia)

Incident: SA Health patients caught up in data breach of third-party platform Personify Care | ABC News (Australia)

Featured

Audit: NSW's local government audit found that 47% of councils did not have a cyber security plan | kirbyidau.com

Featured

Audit: Australian Senate Estimates reveals 435 Chinese-made surveillance devices found at defence sites

Audit: Western Australia Auditor General's Local Government Information Security Audit 2021-22 reports 324 control weaknesses

Audit: Western Australia Auditor General's State Government Information Systems Audit 2021-22

Audit: Queensland Audit Office's State Entities 2022 reports deficiencies in information systems

Featured

Quote: Denis Waitley "Expect the best, plan for the worst, and prepare...."

Featured

Quote: Willa Cather "No one can build his security upon...."

Quote: Meera Srinivasan "Home is where the Heart is ..."

Quote: Chinese Proverb "When planning for a year, plant corn. When planning..."

Quote: Elijah Shaw "In the battle of real world vs..."

Incident: Cybercriminals access patient information at Melbourne’s Royal Women’s Hospital | 7News

Personal data of almost 200 patients exposed in hack of Melbourne hospital staff member’s email

Worker sent details about the patients to their personal email account, which was later hacked.