Genea Fertility cyber attack: AFP investigating after further publication of sensitive data to dark web
The Australian Federal Police is investigating the Genea Fertility cyber attack after more sensitive data stolen from the fertility provider was published on the dark web by the group claiming responsibility.
Genea Fertility confirmed additional data swiped from its system last month had been published online by ransomware group Termite, despite a court-ordered injunction prohibited further publication of any data.
The IVF provider issued an update online following the latest publication, flagging the ongoing cyber incident was now being probed by AFP and “an investigation is underway”.
Sign up to The Nightly's newsletters.
Get the first look at the digital newspaper, curated daily stories and breaking headlines delivered to your inbox.
By continuing you agree to our Terms and Privacy Policy.“We are continuing to engage with the Office of the Australian Information Commissioner, the Australian Federal Police, the National Cyber Security Coordinator and the Australian Cyber Security Centre in relation to this incident,” the company said.
Genea Fertility was hit with the massive cyber incident three weeks ago, which first appeared as a regular phone outage but was soon revealed to be more sinister when ransomware group Termite claimed responsibility for the hack.
The IVF company obtained an injunction on February 25 to prohibit the access, use and dissemination of any data by the threat actor and any third parties. The injunction is in place until March 25.
It revealed a total 940.7GB of data was taken from Genea’s IT network and systems on February 14, including sensitive information such as pathology reports, patients’ medical and fertility histories, addresses, contact details, Medicare and private health fund numbers and more.
The ransomware group claims to have up to 700GB of data.
Genea said it was continuing to take steps to try and safeguard patients and staff, including working to understand exactly what data had been published, notifying affected patients and staff, and ensuring those affected have appropriate support.
“This includes the support of IDCARE, Australia’s national identity and cyber support service which includes counselling,” it said.
“We thank our community for their patience and understanding as we continue to respond to this incident and apologise for any concern that this development may cause.”
Australian National Cyber Security coordinator lieutenant general Michelle McGuinness said her team was working closely with Genea to coordinate a national response to the breach.
“We are bringing together expertise and resources from across government and security agencies,” Ms McGuinness said.
With more than 20 locations nationwide, including one in Perth, thousands of patients access a range of fertility and genetic services at Genea Fertility clinics.
