MEGA PRIVACY FULL
The authors say that the architecture Mega uses to encrypt files is riddled with fundamental cryptography flaws that make it trivial for anyone with control of the platform to perform a full key recovery attack on users once they have logged in a sufficient number of times. “Medibank continues to support its customers from the impact of this crime through our previously announced Cyber Response Support Program which includes mental health and wellbeing support, identity protection and financial hardship measures,” the spokeswoman said.Research published on Tuesday shows there's no truth to the claim that Mega, or an entity with control over Mega's infrastructure, is unable to access data stored on the service. In a statement, a Medibank spokeswoman said the insurance giant would “continue to cooperate with the OAIC and its ongoing investigation”. Mr Newhouse said the data breach exposed the lack of safeguards in place to prevent such personal and private information being released to wrongdoers and Medibank & AHM had “failed policyholders”. Medibank has a duty to keep this kind of information confidential” he said. “We believe the data breach is a betrayal of Medibank Private’s customers and a breach of the Privacy Act. “We could have gone separately to court, but after consulting with Maurice Blackburn we felt it was in the best interests of all the people affected by the breach to work together on the complaint,” Mr Newhouse said.īannister Law Class Actions principal Charles Bannister said he hoped the co-operation agreement would lead swift compensation for millions of customers. One of the benefits of pursuing the complaint with the OAIC rather than through the courts was that the OAIC could not make adverse costs orders against complainants, meaning there was less risk to Medibank customers who joined in the complaint, he said. “They are slow, but then again they’re going to be very focused on this particular breach because it’s one of the largest in Australian history,” Mr Newhouse said after announcing the change of tactic on Sunday. Maurice Blackburn Lawyers formally lodged a representative complaint with the OAIC about that data breach in December, at the same time Bannister Law Class Actions and Centennial Lawyers were investigating a class action lawsuit of their own, that they said would be a major test of Australia’s privacy laws that could go all the way to the High Court.Īt the time, Mr Newhouse said a class action lawsuit was preferable to a representative complaint to the OAIC because the privacy watchdog could be slow at making a finding. In October, Medibank reported that cyber criminals had gained access to the personal records of 9.7 million customers, in a breach that ultimately resulted in thousands of confidential medical records appearing on the dark web. She found that “ compensation for non-economic loss may range from $500 to more than $20,000 for extreme loss or damage resulting from the data breach”.Įven taking the low end of that range, Medibank would be facing a damages bill of almost $5 billion if the OAIC were to make a similar finding against the insurance company for its data breach in October, the principal solicitor of Centennial Lawyers, George Newhouse, told The Australian Financial Review. In January 2021, Australian Information Commissioner and Privacy Commissioner Angelene Falk determined a representative complaint from the asylum seekers against the Department of Immigration and Border Protection, which had mistakenly released the personal information of 9251 detainees in immigration detention. The firms say they have already registered tens of thousands of Medibank customers after investigating their compensation claims.įollowing what is known as a “representative complaint”, the OAIC has the power to award compensation to consumers affected by a data breach, without the need for consumers to pursue a class action through the courts. George Newhouse, principal at Centennial Lawyers, says a privacy commissioner finding against Medibank could run to billions of dollars. Legal firms Bannister Law Class Actions and Centennial Lawyers have announced they are merging their class-action lawsuits against Medibank with a case already made to the Office of the Australian Information Commissioner (OAIC) by Maurice Blackburn Lawyers. The leak of the sensitive data of 9.7 million Medibank customers could cost the insurer upwards of $5 billion in payouts, lawyers behind a major privacy complaint say.
0 kommentar(er)
