Australia has identified the Russian mastermind behind a crippling cyberattack, unmasking the 33-year-old hacker for the first time yesterday and linking him to an international crime syndicate.
Hackers infiltrated Australian private health insurer Medibank in November 2022, stealing sensitive medical records and leaking them on the dark Web.
Among the 9.7 million customers caught up in the high-profile cyberattack — one of the country’s worst data breaches — was Australian Prime Minister Anthony Albanese.
Photo: AP
Australian intelligence agencies have long suspected Russian hackers were behind the breach, which has previously been tentatively linked to the REvil ransomware collective.
Following an 18-month investigation, Australia has taken the rare step of naming the individual believed responsible: Russian citizen Aleksandr Gennadievich Ermakov, who has also been hit with first-ever cybersanctions.
“This is the first time an Australian government has identified a cybercriminal and imposed cyber sanctions of this kind and it won’t be the last,” Australian Minister for Home Affairs Clare O’Neil told reporters.
“These people are cowards and they’re scumbags,” she added.
“They hide behind technology, and today the Australian government is saying that when we put our minds to it, we’ll unveil who you are, and we’ll make sure you are accountable,” she said.
The Medibank hackers started leaking private health records on the dark Web after the company, one of Australia’s largest private health insurers, refused to pay a multimillion-dollar ransom.
The leaks were selected to cause maximum harm: targeting records related to drug abuse, sexually transmitted infections and pregnancy terminations.
“Medibank in my view was the single most devastating cyberattack we have experienced as a nation,” O’Neil said. “We all went through it, literally millions of people having personal data about themselves, their family members, taken from them and cruelly placed online for others to see.”
Australia beefed up its cybersecurity laws in the wake of the Medibank attack, pledging that the nation’s intelligence agencies would proactively “hack the hackers.”
In a taunting and cryptic reply posted to the dark Web, the hackers responded: “We always keep our word.”
Ermakov, who used the online aliases blade_runner and JimJones, would now be targeted by a travel ban and strict financial sanctions, Australian Minister for Foreign Affairs Penny Wong (黃英賢) said.
“This will mean it’s a criminal offense, punishable with up to 10 years imprisonment, to provide assets to him — or to use or deal with his assets,” she told reporters.
Photos released by the Australian government showed Ermakov as a fresh-faced young man with short dark hair and a wry smile.
REvil — an amalgam of ransomware and evil — was reportedly dismantled by Russian authorities in 2022 after it extorted an US$11 million ransom from JBS Foods, a major food conglomerate.
The Australian government confirmed Ermakov was a member of the REvil syndicate.
Tropical Storm Usagi strengthened to a typhoon yesterday morning and remains on track to brush past southeastern Taiwan from tomorrow to Sunday, the Central Weather Administration (CWA) said yesterday. As of 2pm yesterday, the storm was approximately 950km east-southeast of Oluanpi (鵝鑾鼻), Taiwan proper’s southernmost point, the CWA said. It is expected to enter the Bashi Channel and then turn north, moving into waters southeast of Taiwan, it said. The agency said it could issue a sea warning in the early hours of today and a land warning in the afternoon. As of 2pm yesterday, the storm was moving at
DISCONTENT: The CCP finds positive content about the lives of the Chinese living in Taiwan threatening, as such video could upset people in China, an expert said Chinese spouses of Taiwanese who make videos about their lives in Taiwan have been facing online threats from people in China, a source said yesterday. Some young Chinese spouses of Taiwanese make videos about their lives in Taiwan, often speaking favorably about their living conditions in the nation compared with those in China, the source said. However, the videos have caught the attention of Chinese officials, causing the spouses to come under attack by Beijing’s cyberarmy, they said. “People have been messing with the YouTube channels of these Chinese spouses and have been harassing their family members back in China,”
The Central Weather Administration (CWA) yesterday said there are four weather systems in the western Pacific, with one likely to strengthen into a tropical storm and pose a threat to Taiwan. The nascent tropical storm would be named Usagi and would be the fourth storm in the western Pacific at the moment, along with Typhoon Yinxing and tropical storms Toraji and Manyi, the CWA said. It would be the first time that four tropical cyclones exist simultaneously in November, it added. Records from the meteorology agency showed that three tropical cyclones existed concurrently in January in 1968, 1991 and 1992.
UPDATED FORECAST: The warning covered areas of Pingtung County and Hengchun Peninsula, while a sea warning covering the southern Taiwan Strait was amended The Central Weather Administration (CWA) at 5:30pm yesterday issued a land warning for Typhoon Usagi as the storm approached Taiwan from the south after passing over the Philippines. As of 5pm, Usagi was 420km south-southeast of Oluanpi (鵝鑾鼻), Taiwan proper’s southernmost tip, with an average radius of 150km, the CWA said. The land warning covered areas of Pingtung County and the Hengchun Peninsula (恆春), and came with an amended sea warning, updating a warning issued yesterday morning to cover the southern part of the Taiwan Strait. No local governments had announced any class or office closures as of press time last night. The typhoon
RSS