Pathology lab, ACL, criticised for five-month delay in reporting patient data hack
By Jessica Wang | news.com.au
A cyberterror expert has questioned why a pathology giant waited five months to inform patients of a data breach that saw credit card and health records leaked.
One of Australia’s largest pathology labs, Australian Clinical Labs (ACL) has been criticised for waiting five months to inform patients their data had been stolen and leaked onto the dark web.
On Thursday, ACL - which has an annual revenue of almost $1 billion - made a ASX announcement which declared that Medlab Pathology had been subject to a notifiable cyber incident dating back to February 2022.
As a result, the personal information of around 223,000 patients and staff had been accessed. The majority of those affected are from NSW and Queensland.
This included the individual medical and health records (associated with a pathology test) of 17,539 individuals, 28,286 credit card numbers and individuals’ names (including around 3375 CVV codes) and 128,608 Medicare numbers which were attached to a name.
