Incident: Thousands of Australian medical histories exposed in data breach | SMH

Incident: Thousands of Australian medical histories exposed in data breach | SMH

Australian Information Security Incident Reported: August 07 2019

Thousands of Australian medical histories exposed in data breach

UpGuard uncovered Neoclinical’s unsecured database on the internet

Reported in: SMH

Tens of thousands of Australians have had their medical histories and other private information exposed in a large data breach of a company that enabled them to participate in paid clinical trials.

The database belonging to Neoclinical exposed approximately 37,000 people’s contact information and their responses to personal medical questions qualifying them for clinical trials, which included information about diagnoses, illicit drug use and treatments.

Source: Thousands of medical histories exposed in data breach

Incident: Electronic medical records locked down as cyber-hackers target hospitals | Nine News

Incident: Electronic medical records locked down as cyber-hackers target hospitals | Nine News

Australian Information Security Incident Reported: June 22 2019

The IT system across Eastern Health, which manages hospitals such as Box Hill and Maroondah, has been the target of a mystery cyber attack. The issue was immediately contained and there was no loss of data from the computer network.

Eastern Health says all computer systems are back up and running and has assured the public there has been no privacy breaches relating to patient information.

Source: Electronic medical records locked down as cyber-hackers target hospitals

Eastern Health Media Statement:  Computer outage experienced by Eastern Health (PDF)

Eastern Health Website Statement: Computer outage experienced by Eastern Health

Incident: Specsavers says Qld customers’ private medical information may have been compromised  | ABC News (Australia)

Incident: Specsavers says Qld customers’ private medical information may have been compromised | ABC News (Australia)

Australian Information Security Incident Reported: June 19 2019

Eyewear giant Specsavers has admitted that the personal information of some clients in regional Queensland is missing.

“Contents may include your name, date of birth, address, phone number, email address, clinical records of your optometry tests, and Medicare details” – Specsaver email

How the information was compromised is still being investigated, but it appears a physical computer server was stolen.

Source: Specsavers says Qld customers’ private medical information may have been compromised

Audit: Vic public health ‘highly vulnerable’ to Singapore-like data breach | iTnews

Audit: Vic public health ‘highly vulnerable’ to Singapore-like data breach | iTnews

Australian Information Security Audit Report May 29 2019

Four health services audited, all four exploited.

Reported in: iTnews

An auditor-general report released Wednesday exposed widespread security weaknesses and vulnerabilities that it said left patient data at risk.

“There are key weaknesses in health services’ physical security, and in their logical security, which covers password management and other user access controls.

The audit covered Barwon Health, the Royal Children’s Hospital, the Royal Victorian Eye and Ear Hospital and two different areas of the Department of Health and Human Services (DHHS).

In all four agencies, the auditor-general’s team was able to exploit weaknesses and access patient data.

Psychologists’ home details posted online in HBF breach | The West Australian

Australian Information Security Incident Reported: December 19 2018

WA’s biggest health insurer has admitted to a privacy breach that led to the private addresses of psychologists being published on a TripAdvisor-style healthcare website.

HBF said this week that it had notified the Office of the Australian Information Commissioner and written to more than 7000 psychologists after realising it had provided some personal addresses to the online directory Whitecoat.

Source: Psychologists’ home details posted online in HBF breach

CBA customers’ medical data exposed in potential privacy breach | ABC News (Australia)

Australian Information Security Incident Reported: December 03 2018


The Commonwealth Bank is urgently investigating a potential data breach that may have given its staff access to customers’ sensitive medical information.

Medical information supplied by an unknown number of customers to CommInsure was made available to other arms of the bank, including to staff who decide whether to approve or decline loan applications.

Source: CBA customers’ medical data exposed in potential privacy breach