Family Planning NSW (FPNSW) has written to up to 8,000 clients who accessed the service since 2016 over a ransomware attack of the reproductive and sexual health service’s website that may have seen private patient data accessed by the hackers.
Chairperson Sue Carrick, and CEO Ann Brassil wrote to the clients today saying the Anzac Day cyberattack “may have compromised our online databases”.
The databases held information from clients who contacted the organisation seeking appointments or leaving feedback via its website in the past two-and-a-half years.
The pair apologised to the clients involved, adding that they have “no evidence that this information has been used by the cyber attackers”.
Carrick said Family Planning was “one of several agencies targeted by these cyber criminals on Anzac Day” seeking a bitcoin ransom, and their website was secured by 10am the following day.
“More sensitive medical records held internally were never under threat,” they said.
The service’s website is currently down for “a security update” and a review of its information security is currently underway.
Family Planning NSW informed the Australian Federal Police of the attack and says it is now working to standards set by the Office of the Australian Information Commissioner in an effort to ensure its data is secure.
Business Insider has contacted the Department of Home Affairs about the other agencies targeted in the attack but has not received a response.
We’ll update you if we hear back from them.
Business Insider Emails & Alerts
Site highlights each day to your inbox.