Key Takeaways
- Thousands of documents have been stolen in the Manage My Health hack, including sensitive information about a sexual assault victim
- Hackers are threatening to release over 400,000 documents unless the company pays a US$60,000 ransom
- Manage My Health has apologized for the breach and is working to contain the damage and inform affected patients
- The company’s CEO, Vino Ramayah, says patients should trust the company despite the breach, and that he is personally distressed by the incident
- Online safety advocate Netsafe is warning people to be cautious with emails that include private information or threaten pressure for a response or payment
Introduction to the Hack
The recent hack of Manage My Health, an online portal, has left thousands of documents compromised, including sensitive information about a sexual assault victim. The hackers are threatening to release over 400,000 documents unless the company pays a US$60,000 ransom, with a reported deadline of Friday morning. This has caused widespread concern among patients, including a woman who was sexually assaulted 15 years ago and had not shared her experience with everyone close to her. She is now fearful that her private information will be leaked, and is feeling "re-victimised" by the breach.
The Victim’s Experience
The sexual assault victim, who wishes to remain anonymous, is "ragingly angry" and terrified that her information may be made public. She had given Manage My Health her trust, and feels that the company has failed to keep up its end of the promise to protect her information. The possibility that her assault may have been stolen has brought back post-traumatic stress symptoms, including interrupted sleep and flashbacks. She wants Manage My Health to inform patients whose information was stolen, including exactly what data was taken, so they can take precautionary steps. This is not the first time she has been a victim of a data breach, having previously had her driver’s license, address, date of birth, and phone number published online.
Manage My Health’s Response
Manage My Health CEO Vino Ramayah has acknowledged that the company is also a victim of crime and has apologized for any pain and anxiety caused by the breach. He has stated that patients should trust the company, despite the breach, and that he is personally distressed by the incident. Ramayah’s own medical records were among those impacted, as well as those of his friends and family. He emphasized that the doctor-patient relationship is "sacrosanct" and that the company is working hard to contain the damage and inform affected patients. However, the company has not yet informed patients whose information was stolen, which has caused frustration and anxiety among those affected.
The Impact on Patients
The breach has caused significant distress among patients, particularly those who have sensitive information stored on the portal. The sexual assault victim’s experience is a prime example of the potential consequences of the breach. She is not alone in her concerns, as many others are likely to be feeling similar emotions. The breach has highlighted the importance of data protection and the need for companies to prioritize the security of sensitive information. Manage My Health has acknowledged that it could have communicated better and is working to improve its response to the breach.
Prevention and Next Steps
Online safety advocate Netsafe is warning people to be extra cautious with emails that include private information or threaten pressure for a response or payment. This is particularly important in the wake of the Manage My Health breach, as hackers may try to use the stolen information to scam patients. Patients are advised to be vigilant and to report any suspicious emails or activity to the relevant authorities. Manage My Health is working to inform affected patients and contain the damage, but it may take some time to resolve the situation. In the meantime, patients are advised to take precautionary steps to protect their information and to seek support if they are feeling distressed or anxious about the breach.
Conclusion
The Manage My Health hack has highlighted the importance of data protection and the need for companies to prioritize the security of sensitive information. The breach has caused significant distress among patients, particularly those who have sensitive information stored on the portal. While Manage My Health has apologized for the breach and is working to contain the damage, it is clear that more needs to be done to prevent similar incidents in the future. Patients must be informed and empowered to take control of their own data protection, and companies must prioritize the security of sensitive information. By working together, we can prevent similar breaches and protect the sensitive information of patients.
