Cyber Incident Victim: Compumedics Limited
Date:
Mar 2025
Location:
Australia
Summary
Compumedics Limited reported a ransomware attack that triggered unusual activity in its IT network, affecting systems in Australia and the United States. The company took all servers offline as a precaution, began restoring Australian servers after checks, and noted that some Nexus360 customers remain offline while daily backups of the impacted data remain intact. An independent forensic investigation is underway to determine the scope of the impact on customer data and to ensure systems are secure before normal services resume. The incident has been reported to the Australian Cyber Security Centre, and further notifications will be considered as the investigation progresses.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
Compumedics Limited confirmed that it had been the victim of a cyber security incident caused by a ransomware attack after unusual activity was detected in its IT network. The incident impacted data on some of the company’s systems located in Australia and the United States of America. Despite the impact on data, Compumedics stated that its business operations remained unaffected. As a precautionary measure, all servers were taken offline to contain and remediate the incident and to secure the network.
The company noted that the impacted data is backed up daily, which facilitated recovery efforts. Australian servers are currently being restored as they are checked, while some of the Nexus360 customers remain offline. Nexus360 is described as Compumedics’ web‑based patient data and Lab Management System that provides integrated hardware and software solutions for Sleep and Neurology clinics. Steps have been taken to contain and remediate the incident and to secure the network in accordance with the company’s response plan.
An independent forensic investigation is ongoing to understand what happened, assess the impact on customers’ data including patient reports, and ensure that systems are secure so normal services can be resumed as soon as possible. A report has been made to the Australian Cyber Security Centre, which is part of the Australian Signals Directorate. Compumedics indicated that it will determine what further notifications are required as the investigation continues.