Medibank Private (MPL.AX), Australia’s largest private health insurer, announced Tuesday that its property manager’s cybersecurity breach affected a file containing staff names and contact information.
Medibank is recovering from a cyberattack in October that compromised 9.7 million client records.
The leak has resulted in three class action lawsuits, and the country’s privacy agency is investigating its data handling.
Medibank informed Reuters in an email that one of its property managers using the file transfer program MOVEit was compromised, stealing a file with employee names, email addresses, and phone numbers.
The company said the file did not contain employee bank, payroll, or home information.
“We continue to investigate and work closely with the vendor, and at this stage we are not aware of any of our customers’ data being compromised,” Medibank added.
“MOVEit did not affect Medibank systems.” Health insurer shares fell 0.3% at 0516 GMT.
Over the past ten months, Australia has been plagued by cyberattacks, pushing regulators to scrutinize firm data practices and rewrite cybersecurity laws.
Comment Template