Skip to main content
Skip to navigation

Regulatory Enforcement

APRA pressures Medibank on cyber enhancements post-breach

By Kyle Brasseur2023-06-28T13:18:00

The Australian Prudential and Regulation Authority (APRA) will require Medibank Private to hold 250 million Australian dollars (U.S. $166 million) in extra capital until the insurer remediates identified cybersecurity weaknesses after a significant data breach.

The action by APRA, announced Tuesday, follows a cyber incident last year in which 9.7 million past and present Medibank customers had their data stolen by a hacker. The data exposed included first and last names, addresses, dates of birth, Medicare numbers, policy numbers, phone numbers, and some claims data.

The incident was one of the most significant data breaches ever experienced in Australia, said APRA, the country’s prudential regulator of the financial services industry.

THIS IS MEMBERS-ONLY CONTENT

cw-membership

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

Related articles

Premium
NAVEX report: Driven by cyber threats, infosec compliance top of mind

2023-06-22T21:15:00Z By Aaron Nicodemus

Compliance teams are taking more responsibility for issues related to information security and data privacy, motivated by increasing threats posed by data breaches and cyber intrusions, according to a new survey from NAVEX.
Premium
Shades of SolarWinds in lessons from MOVEit hack

2023-06-14T17:50:00Z By Neil Hodge

A ransomware attack affecting some of the U.K.’s largest corporations has highlighted once again how exposed organizations can be if the levels of cybersecurity used by their third parties are not as strong as expected.
Premium
Verizon report: Lion’s share of data breaches linked to organized crime

2023-06-08T20:06:00Z By Adrianne Appel

About 83 percent of data breaches are perpetrated by external bad actors and not employees, with 70 percent of those breaches linked to organized crime groups with financial motives, according to the latest research.

More from Regulatory Enforcement

Article
SFO head to step down as speculation grows over future of agency

2026-01-22T17:32:00Z By Neil Hodge

Nick Ephgrave, director of the U.K.’s main anti-corruption enforcement agency, the Serious Fraud Office, will retire at the end of March—about halfway through his appointed five-year term. Experts say he leaves the agency in a lot better position than he joined it in September 2023.
News Brief
FTC puts GM’s puts connected vehicle data practices under compliance spotlight

2026-01-16T20:32:00Z By Oscar Gonzalez

The U.S. Federal Trade Commission finalized its order against General Motors and its OnStar subsidiary over the improper usage of geolocation and driving behavior data of drivers.
Article
Kaiser plans pay $556M to settle Medicare upcoding allegations

2026-01-16T17:49:00Z By Adrianne Appel

Kaiser Health affiliates have agreed to pay more than $556 million to settle allegations originally made by whistleblowers that they ignored compliance department warnings and unlawfully reworked diagnoses for Medicare patients in order to receive higher payments from the federal government.