Victorian medical centre suffers cyber attack

A Victorian medical centre has disclosed that it was a victim of a cyber attack, leading to personal information being accessed.

Point Lonsdale Medical Group (PLMG) said that the firm’s email account is believed to have suffered unauthorised access after phishing emails were identified as being sent from that email.

“PLMG undertook immediate containment and remediation actions and also notified the recipients of the phishing emails, advising them not to interact with that email,” the medical centre said.

You’re out of free articles for this month

Username or Email

Password Forgot password?

Keep me signed in on this device.

First Name

Last Name

Mobile

Organisation Type

By becoming a member, I agree to receive information and promotional messages from Cyber Daily. I can opt out of these communications at any time. For more information, please visit our Privacy Statement.

Need help signing up? Visit the Help Centre.

The company said that its own systems and patient database had not been breached, but that, based on the investigation of external forensics experts, a small number of emails contained in the mailbox were accessed.

“We have been working with our external forensic experts to identify which emails have been accessed. Unfortunately, we have not been able to identify the particular emails that were accessed,” the medical centre added.

“We take the privacy of our patients incredibly seriously. As a result and out of abundant caution, we are informing all our patients of potential access to their personal information, to the extent their personal information may have been in that particular email account, and the protective measures they can take to safeguard their information.”

The data accessed was information the firm typically sends or receives via email, including health summaries, treatment plans and referrals, within which contained data such as “name, date of birth, address, medical history, diagnosis and treatment plans”.

The firm added that it is currently unsure which emails were accessed, but said it was a small number. It also said that there is currently no evidence to suggest the data was exfiltrated.

At this stage, the threat actor behind the PLMC incident has not been publicly identified, nor has Cyber Daily seen any groups claiming responsibility for the incident.

VIEW ALL

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.

You need to be a member to post comments. Become a member for free today!

newsletter

Be the first to hear the latest developments in the cyber industry.

Victorian medical centre suffers cyber attack

Daniel Croft

OUR PLATFORMS AND BRANDS

EVENTS AND SUMMITS

PODCASTS

LEARNING AND EDUCATION

MOMENTUM MARKETS NETWORK

LINKS

STAY CONNECTED

FOLLOW US ON