Australia’s largest not-for-profit health and aged care provider, St Vincent’s, has confirmed that it experienced a cyber attack resulting in the theft of some of its data.
In an official statement released on Friday, St Vincent’s Health Australia revealed that it initiated its response to the cybersecurity incident on Tuesday, discovering the data breach late on Thursday.
“St Vincent’s promptly took measures to contain the incident, enlisted the expertise of external security professionals, and notified relevant state and federal authorities along with essential agencies,” the statement said.
On December 21, evidence was uncovered that cybercriminals had successfully removed data from St Vincent’s network. The organization is currently engaged in an ongoing investigation, focusing on securing its systems, comprehending the actions of the cybercriminals, and identifying the extent of the data that may have been accessed and stolen.
Thus far, the incident has not disrupted St Vincent’s ability to provide services across its hospital, aged care, and virtual and home health networks, as confirmed by the health provider. St Vincent’s emphasized its dedication to the health and safety of its patients, residents, and staff, as well as the uninterrupted delivery of services to the community.
Hamish Hansford, acting national cyber security coordinator, stated that collaborative efforts were underway with the National Office of Cyber Security, Services Australia, the Department of Health and Aged Care, and relevant state and territory agencies. The goal is to ensure a unified government response and mitigate any potential ripple effects.
The Australian Signals Directorate’s Australian Cyber Security Centre is closely collaborating with St Vincent’s, contributing to the immediate containment of the incident. Despite the distressing nature of such incidents, the focus remains on assisting St Vincent’s in addressing the impacts arising from the cyber attack.
St Vincent’s, which operates major inner-city hospitals in Melbourne and Sydney, along with private hospitals and aged care facilities, employs approximately 30,000 individuals. This cyber attack follows a trend of major companies, including Medibank and Optus, falling victim to similar incidents in recent years.
CyberSec84 | Cybersecurity news. 
Leave a comment