24 May 2024
-
The latest statement from MediSecure can be found here.
-
Further information from Mediscure can be found here.
-
More information can be found on the Department of Home Affairs website here.
The National Office of Cyber Security continues to lead the national response to the MediSecure incident. This afternoon, representatives from the RACGP attended a third briefing for health industry representatives.
We will continue to be updated by the National Office of Cyber Security to support the health sector to address the impacts of this incident.
The National Cyber Security Coordinator provided an updated public statement on 24 May 2024 on their LinkedIn and X social network accounts.
The incident does not relate to the eRX Script Exchange (eRX) or the National Prescription Delivery Service (NPDS). These services continue to operate as usual and have not been impacted. Health care providers can prescribe and dispense prescriptions as usual, and consumers can continue to access medicines safely.
A MediSecure database containing the personal and limited health information of individuals relating to prescriptions, as well as healthcare provider information, has been affected by this cyber security incident.
The affected data relates to prescriptions distributed by MediSecure’s systems up until November 2023.
MediSecure has advised that the original compromise has been isolated, and technical and forensic investigations are ongoing. Updates will be provided as those investigations progress
Individuals who are concerned about how the incident may impact them should refer to the Department of Home Affairs’ MediSecure public advice webpage for the most updated advice.
If you believe your information has been misused as a result of this incident, report this to ReportCyber at cyber.gov.au.
If you have any questions, please direct them to the csrcu@homeaffairs.gov.au inbox in the first instance.
We’ll keep members updated with further information as it becomes available.