The largest health insurer in Australia, Medibank, suffered a data breach in late 2022 that compromised the personal information of 9.7 million people.
Subsequently, private documents—including records of abortions—were made available online.
The first-ever cyber sanctions imposed in Australia include monetary fines and a travel ban on Aleksandr Ermakov.
Although not much information about Mr. Ermakov has been made public, Australian intelligence officials claim that he is a member of the notorious Russian cybercrime group REvil, which has been connected to attacks in the US, UK, and Europe.
Home Affairs Minister Clare O’Neil called the Medibank hack “the single most devastating cyber-attack we have experienced as a nation” when she announced the measures on Tuesday.
“Literally millions of people having personal data about themselves, their family members, taken from them and cruelly placed online for others to see,” she stated.
“These people are cowards and scumbags… we’ll unveil who you are and we’ll make sure you’re accountable.”
Ms. O’Neil continued, “Authorities are still looking into the breach, and more people might be penalized.”
The government is utilizing cyber sanctions legislation for the first time, which was passed in 2021 and imposes financial penalties on those responsible for major cyberattacks.
Although there have been several significant data breaches in Australia recently, few, if any, have shocked the nation as much as the Medibank hack.
Releasing abortion records following a data breach in Australia
Russia is held accountable by Australia for the medical hack.
