It was late October and the cyber extortionists — who had been messaging back and forth with Medibank for days — were trying to impress on Australia’s largest private health insurer how trustworthy and reputable their criminal enterprise was.
In them, the attackers outline potential services Medibank could use to facilitate payments, but also frequently threaten to publish sensitive data, wreak as much reputational damage as possible, and contact patients directly through stolen phone and email details. For the attackers who stole customer data from Medibank, causing as much damage as possible is good for business.
There are also much more troubling elements, like public displays of which companies are being ransomed and how long they have to pay, and dumps of people’s very private information. But even then, it’s often presented and handled in a way startlingly similar to consumer websites.
TimBiggs After a couple of hours on Tor can’t find any of this data. How does one find it?
TimBiggs