Cyber Incident Victim: Ambulance Tasmania
Date:
Jan 2021
Location:
Australia
Summary
A third party published sensitive personal details of individuals who requested ambulance services in Tasmania through an online list that continuously updated with each dispatch. The breach involved Ambulance Tasmania's paging system, exposing private patient information and prompting involvement by law enforcement. The Health and Community Services Union characterized the incident as horrific, warning it could lead to legal action against the government due to the scale of unauthorized data disclosure. The compromised information remained actively accessible at the time of reporting, though conflicting accounts existed regarding the site's operational status.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On or around January 7, 2021, Ambulance Tasmania experienced a significant data breach involving the unauthorized publication of private patient details online. The compromised information included records of every Tasmanian who had called an ambulance since November 2020, with the published list dynamically updating each time paramedics were dispatched to new incidents. A third party, whose identity remained unidentified at the time of reporting, was responsible for hosting and maintaining the exposed data. Tasmania Police were engaged to investigate the incident, indicating the severity of the breach and the involvement of law enforcement to address potential criminal activity. The Health and Community Services Union characterized the breach as “horrific,” emphasizing the sensitivity of the disclosed information and its implications for patient privacy. Reports noted conflicting information regarding the status of the website hosting the data, with uncertainty over whether it remained operational and actively updating or had been taken offline following discovery.
The breach directly impacted individuals whose ambulance service records—including personal and medical details—were publicly accessible, creating risks of misuse or exploitation. The Health and Community Services Union suggested the incident could expose the Tasmanian Government to legal action, highlighting potential liability for failing to secure sensitive health data. The exposure stemmed from a compromise of Ambulance Tasmania’s paging system, though technical specifics of the intrusion or data extraction method were not detailed in available reports. Government and health authorities faced pressure to determine the full scope of disclosed data, assess dissemination beyond the initial site, and implement measures to prevent recurrence. The incident underscored systemic vulnerabilities in the handling of emergency service communications and patient records, with no immediate public confirmation of containment actions beyond the police investigation.