Key Takeaways
- The hackers known as ‘Kazu’ have removed information about the stolen data from a health app online after a High Court injunction was granted to prevent anyone from accessing or sharing the stolen data.
- The breach affected between 6 and 7 percent of the approximately 1.8 million registered users of the health app, Manage My Health.
- The Health Minister, Simeon Brown, has ordered an urgent review into the breach and considers it a very serious breach that is not acceptable.
- The CEO of Manage My Health, Vino Ramayah, has taken full responsibility for the breach and is willing to step down if necessary.
Introduction to the Breach
The hackers who claimed to have stolen data from a health app have removed all information about the data from their online platforms. This comes after Manage My Health was granted a High Court injunction preventing anyone from accessing or sharing the stolen data. The hackers, known as ‘Kazu’, had previously published samples of the leaked information, which has caused significant concern among the affected users. The breach, which occurred just before New Year’s, has been deemed a serious incident by the Health Minister, Simeon Brown, who has ordered an urgent review into the matter.
The Impact of the Breach
The breach has affected a significant number of users, with between 6 and 7 percent of the approximately 1.8 million registered users of Manage My Health being impacted. This translates to over 100,000 New Zealanders who have had their sensitive health information compromised. The nature of the information that has been breached is also a major concern, as it includes personal and medical details that are considered private and confidential. The Health Minister has emphasized that New Zealanders have a right to expect that their data is being held to the highest standards, and the breach is a clear violation of this expectation.
Response from Manage My Health
The CEO of Manage My Health, Vino Ramayah, has acknowledged that the company is also a victim of the crime and has taken full responsibility for the breach. He has stated that patients should trust the company, despite the breach, and has assured that the company is taking steps to restore confidence and ensure that the interests of providers and patients are prioritized. Ramayah has also revealed that his own medical records were among those accessed, which has added a personal dimension to the breach. However, a cyber security expert has expressed doubts about Manage My Health’s ability to recover from the breach, citing the significant impact on the company’s reputation.
Consequences and Next Steps
The breach has significant consequences for Manage My Health, and the company’s reputation has taken a major hit. The Health Minister has emphasized that the breach is not acceptable and has ordered an urgent review into the matter. The review will likely examine the circumstances surrounding the breach and identify lessons that can be learned to prevent similar incidents in the future. The CEO of Manage My Health has also indicated that he is willing to step down if necessary, which suggests that the company is taking the breach seriously and is willing to take decisive action to address the issue. The removal of the stolen data from the hackers’ online platforms is a positive development, but it is only the first step in addressing the breach and restoring confidence among the affected users.
Conclusion and Future Implications
The breach of Manage My Health’s data is a significant incident that has major implications for the company, its users, and the wider health sector. The fact that the hackers have removed the stolen data from their online platforms is a positive development, but it is only the beginning of the process of addressing the breach and restoring confidence. The Health Minister’s urgent review and the company’s willingness to take responsibility and learn from the breach are important steps towards preventing similar incidents in the future. However, the breach also highlights the need for greater vigilance and investment in cyber security measures to protect sensitive health information and prevent such incidents from occurring in the first place. As the investigation into the breach continues, it is likely that there will be significant developments and implications for the company, its users, and the wider health sector.