Australian IVF company Genea has confirmed that stolen data from its systems has been published on the dark web after a cyber attack earlier this year. Genea says it is working to understand what details have been published.
The attack was attributed to the Termite ransomware group and the 940.7GB trove of stolen data includes contact details, Medicare card numbers, medical histories, test results and medications. The attackers were in Genea’s systems between January 31 and February 14, 2025. It is not known if financial data such as credit card details were taken.
Genea says it has taken several steps ahead of and following the publication of this data, including:
- Obtaining a court-ordered injunction to prohibit any access, use, dissemination or publication of the impacted data by the threat actor and any third party;
- Notifying our affected patients and staff of the cyber incident and providing information in relation to mitigating the risks; and
- Ensuring that our support package is available to those impacted by this incident. This includes the support of IDCARE, Australia’s national identity and cyber support service which includes counselling.
Additionally, the cyber incident and the publication of the data has been reported to the Australian Federal Police, and an investigation is underway.
“We are continuing to engage with the Office of the Australian Information Commissioner, the Australian Federal Police, the National Cyber Security Coordinator and the Australian Cyber Security Centre in relation to this incident,” a company statement reads.
Australia’s National Cyber Security Coordinator, Michelle McGuinness, says the incident has been incredibly distressing.
“We are working across the Australian Government, and with Genea, to respond to the incident so they can provide victims with the support and resources they need,” she said.
