The Australian Government has been advised by MediSecure that approximately 12.9 million individuals may have had their personal and health information relating to prescriptions, as well as healthcare provider information exposed by a cyber security incident.
MediSecure has published a public notice on the nature and extent of the incident. See MediSecure's statement on the cyber security incident.
The affected data relates to prescriptions distributed by MediSecure’s systems up until November 2023.
This service enabled prescriptions to be delivered from prescribers to a pharmacy of an individual’s choice (for paper and electronic prescriptions). Until late 2023, MediSecure was one of two prescription delivery services operating nationally.
In May 2023 the Australian Government finalised a tender for this service, awarded exclusively to another company, Fred IT Group’s eRx Script Exchange (eRx).
The national prescription delivery service, eRx, is not affected by this cyber incident. Consumers can continue to access medicines safely, and healthcare providers can still prescribe and dispense as usual.
Prescriptions continue to work as normal. People should keep accessing their medications and filling their prescriptions. This includes prescriptions (paper and electronic) that may have been issued up until November 2023.