Select Page

Incident: TissuPath data breach victim upset by delayed notification | ABC News (Australia)

Posted by | Nov 14, 2023 | , , , , , , , , | 0 |

Incident: TissuPath data breach victim upset by delayed notification | ABC News (Australia)

Australian Pathology Ransomware Attack, 14 November 2023

Australian pathology company Tissupath, reported a ransomware attack at a third-party IT supplier, Core Desktop

About 130,000 victims of a data hack at pathology company TissuPath in August involving referrals issued between 2011 and 2020 was to blame

Company Media Release: 4 September 2023 MEDIA STATEMENT
Company Breach Information: Cybersecurity Incident Notice
NSW Government Data Beach Report: TissuPath data breach
Source: TissuPath data breach victim upset by delayed notification | ABC News (Australia)

View more incidents from Medical and Health Care sector, and Victorian incident reports.

This attack is one of the Australian Service Provider “Core Desktop” that was reportedly breached by the Russian cybercriminal group AlphV, which is also known as BlackCat, view the AlphV Australian Ransomware Attacks.

YouTube player

 

TissuPath, a specialist pathology firm in Australia, has experienced a data breach due to a cyber security incident. The breach involved a third-party supplier attack, accessing pathology referral records kept in a backup storage drive.

A woman named Lynda George was upset by the delayed notification of a data breach at a pathology company called TissuPath, which exposed her personal information to hackers.

The breach occurred in August 2021, when a third-party IT supplier was hacked by Russian cybercriminals, who demanded a ransom and posted the data on the dark web.

The data included scanned pathology request forms with information such as patient names, dates of birth, contact details, Medicare numbers and private health insurance details.

TissuPath said it was advised by federal government agents not to pay the ransom and notified the affected patients in November 2021, more than two months after the breach.

Ms George said she felt violated and exposed by the breach and wished she was told sooner. She said it felt like being robbed or having someone go through her wardrobe.

Academics said the mandatory reporting guidelines should require hacked businesses to notify victims as soon as possible and offer them support and protection.

TissuPath Media Statement

 

Rate:

About The Author

Steven Kirby

I provide independent and practical consultancy services through raising awareness and fostering the energy for change that delivers improved business management of information security governance, risk and compliance.

Related Posts

Incident: Vinomofo data breach: 500,000 customers at risk after wine dealer hit by cyber-attack | The Guardian

Incident: Vinomofo data breach: 500,000 customers at risk after wine dealer hit by cyber-attack | The Guardian

October 18, 2022

Incident: Personal details of up to 80,000 SA government employees accessed in cyber attack | ABC News (Australia)

Incident: Personal details of up to 80,000 SA government employees accessed in cyber attack | ABC News (Australia)

December 10, 2021

Incident: Life Saving Victoria server hacked by ‘malicious actors’ | ABC News Australia

Incident: Life Saving Victoria server hacked by ‘malicious actors’ | ABC News Australia

December 24, 2023

Audit: Victoria audit warns of weak IT controls in council systems | iTnews

Audit: Victoria audit warns of weak IT controls in council systems | iTnews

February 27, 2023

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Please follow the Source link to the original article to support the content owner. We only provide a brief summary with metadata to assist in categorisation.

More Australian News

How Australia's ASIC v FIIG decision supports your cyber investment business case
How Australia's ASIC v FIIG decision supports your cyber investment business case

What you need to know First AFSL cyber penalty: FIIG's $2.5 million penalty is the first cyber security penalty under general financial services … [...]

APRA and ASIC Sound the AI Alarm for Boards and Executives
APRA and ASIC Sound the AI Alarm for Boards and Executives

What you need to know APRA and ASIC have sent powerful messages to regulated entities regarding AI, cyber security and operational resilience in … [...]

Exclusive: INC Ransom claims cyber attack on Australian engineering service company
Exclusive: INC Ransom claims cyber attack on Australian engineering service company

Threat actors have claimed a cyber attack on an Australian engineering solutions company and are threatening to publish data they allegedly … [...]

Exclusive: Major cleaning and facility services firm confirms third-party cyber incident
Exclusive: Major cleaning and facility services firm confirms third-party cyber incident

Major private cleaning and facility services firm Menzies Group has confirmed a cyber incident that occurred after a third-party IT provider was … [...]

Exclusive: Australian College of Business Intelligence investigating Qilin ransomware claims
Exclusive: Australian College of Business Intelligence investigating Qilin ransomware claims

A Sydney-based vocational college has found no evidence of compromised student data after being listed on the leak site of a prolific hacking group. • … [...]

Victorian bulk porting scammer gets over two years in prison
Victorian bulk porting scammer gets over two years in prison

A 35-year-old man from Lynbrook, south-east Melbourne, has received a prison sentence of two years and two months, with a 12-month non-parole period, … [...]

NSW cyber cops bust alleged bullion-buying BEC bandits
NSW cyber cops bust alleged bullion-buying BEC bandits

NSW Police have charged three people over an alleged $600,000 business email compromise (BEC) scam operation, after detectives caught a young woman … [...]

Miners’ data targeted as hackers hold software provider to ransom
Miners’ data targeted as hackers hold software provider to ransom

Dozens of Australian mining companies are scrambling to access their key technology systems after a major software supplier to the sector was … [...]

Instructure dealing with Canvas cyberhackers a dangerous tactic, say experts
Instructure dealing with Canvas cyberhackers a dangerous tactic, say experts

The company that runs Canvas has painted a target on its back for future extortion attempts by making a deal with hackers, according to cybersecurity … [...]

Exclusive: Hospitality IT provider allegedly breached by Qilin
Exclusive: Hospitality IT provider allegedly breached by Qilin

Threat actors have claimed a cyber attack on an Australian hospitality and gaming industry supplier, having listed the firm on the dark web. • Fri, 15 … [...]

ACCC welcomes another year of funding for the National Anti-Scam Centre
ACCC welcomes another year of funding for the National Anti-Scam Centre

The Australian consumer watchdog is pleased with the overall funding boost of $67.7 million over four years in the 2026–27 budget. • Thu, 14 May 2026 … [...]

Report: Business email compromise attacks surged dangerously in April
Report: Business email compromise attacks surged dangerously in April

BEC attacks rose 151 per cent month on month in April, with advanced fee and gift card fraud key drivers. • Thu, 14 May 2026 • Security *]:clear-none … [...]

Shares
Share This

Discover more from Australian Cyber Aware

Subscribe now to keep reading and get access to the full archive.

Continue reading