(Reuters) -Australia’s Medibank Private Ltd said on Tuesday it was aware of media reports about a criminal’s threat to publish stolen customer data within 24 hours, a day after the health insurer refused to make a ransom payment to the hacker.
Medibank on Monday informed that data, including name, date of birth, address, phone number, and email addresses, of about 9.7 million current and former customers had been compromised.
Cyber security incidents in Australia have snowballed recently, with a government report suggesting there is one attack every seven minute. As many as eight companies have reported cyber security breaches since September.
“We knew the publication of data online by the criminal could be a possibility, but the criminal’s threat is still a distressing development for our customers,” Medibank Chief Executive Officer David Koczkar told Reuters in an emailed response on Tuesday.
The country’s biggest health insurer also warned that its customers could be contacted by the criminal directly, adding that the Australian Federal Police was trying to prevent the sharing and sale of its customers’ data.
(Reporting by Sameer Manekar in Bengaluru; Editing by Sherry Jacob-Phillips)