Diabetes WA telehealth service breached

Diabetes WA has disclosed a data breach affecting people who engaged with its telehealth service.
12 April 2024
Image by CyberBeat

Diabetes WA, a leading service provider for Western Australians affected by diabetes, has reportedly fallen victim to a data breach. The breach involves the personal information of individuals who have interacted with the organisation's telehealth platform and was believed to have been carried out by a third party. 

The accessed data includes names, addresses, dates of birth, emails, phone numbers, marital and Indigenous status, referring doctors, diabetes types, and Medicare numbers. However, the organisation assured that comprehensive medical records and clinical data remained unaccessed. 

The compromised data belonged exclusively to those who had utilised the Diabetes WA Telehealth Service. The breach occurred via a single compromised user account, which was promptly blocked to prevent further intrusions. 

Post-breach investigations revealed the limited scope of the attack, and there was no evidence of lateral spread across the organisation's systems. 

All impacted individuals have been alerted, and the Office of the Australian Information Commissioner has been notified. As a precaution, Diabetes WA advises those affected to obtain a new Medicare card number via MyGov or by contacting Services Australia directly. The breach, promptly detected and fully contained, is currently under investigation in alignment with Diabetes WA's Cyber Security Response Plan. Additional assistance is available through IDCare for those with concerns.

- CyberBeat


About CyberBeat

CyberBeat is a grassroots initiative from a team of producers and subject matter experts, driven out of frustration at the lack of media coverage, responding to an urgent need to provide a clear, concise, informative and educational approach to the growing fields of Cybersecurity and Digital Privacy.

Contact CyberBeat

If you have a story of interest, a comment, a concern or if you'd just like to say Hi, please contact us

Terms & Policies >>


We couldn't do this without the support of our sponsors and contributors.