There have been an accusation on Russian over Australia’s worst data breach is related to the cyberattack on Medibank, one of the country’s largest health insurers, in 2022. The attack stole the personal data of 9.7 million customers, including their medical records, and some of them were published on the dark web by the hackers. The Australian government has publicly named and sanctioned a Russian citizen, Aleksandr Ermakov, for his alleged role in the attack.
He is said to be a member of the notorious ransomware gang REvil, which has been linked to other attacks around the world. The sanctions include financial penalties, a travel ban, and a criminal offense for anyone who deals with his assets. This was the first time that Australia used its new cyber sanctions powers, which were passed in 2021.
The investigation involved collaboration between Australian and international intelligence agencies, as well as companies like Microsoft and Medibank. The Australian authorities said they are still investigating the breach and more people may face penalties.
