Medibank hackers threaten to release health data of 9.7million Australians in ‘legitimate’ threat

International cyber hackers have threatened to disclose the personal data of millions of Australians unless Medibank pays within 24 hours.

A bizarre cartoon meme was posted early Tuesday morning on a dark web forum by alleged hackers, a day after the health insurer said it would not pay a ransom.

The message quoted Confucius as saying, “A man who has made a mistake and does not correct it commits another mistake.”

Added the message below the quote: ‘Data will be published in 24 hours. PS I recommend selling Medibank shares.’

Hackers updated the threat with a YouTube link to a satirical ABC article by comedian Mark Humphries about Medibank.

Authorities have confirmed that they believe the threat is legitimate.

It is believed that the hackers responsible for the latest threat are part of a Russian group.

“Whoever these hackers are, they are very aware of the magnitude of the incident here in Australia,” tech expert Trevor Long told 2GB’s Ben Fordham on Tuesday.

“If we pay ransom, it will get worse, so it’s important that Medibank doesn’t pay ransom.”

The latest threat comes a day after the health insurer refused to pay ransom to cybercriminals who stole the private data of 9.7 million current and former customers last month.

The health insurer on Monday revealed details of nearly 10 million customers consulted in the major data breach, including information such as names, date of birth, phone number and email addresses.

The company decided not to pay ransom to the criminals responsible after taking advice from cybersecurity experts.

“Based on the extensive advice we have received from cybercrime experts, we believe there is only a limited chance that paying a ransom will result in our customers’ data being returned and not being published” , CEO David Koczkar said Monday.