Patient records stolen in cyber-attack on Australian healthcare provider
Partnered Health says personal information and medical details and notes were breached in the attack on 21 clinics
Get ourbreaking news email,free appordaily news podcast
Thousands of medical records and patient information stored with one of Australia’s biggest healthcare providers have been breached in a cyber-attack
Partnered Health, owned by private equity firm Quadrant, said 21 clinics across several cities including Sydney, Melbourne and Canberra have been affected by the breach which occurred on 23 June
AI-powered hacking has exploded into industrial-scale threat, Google says
Read more
“Our investigations to date have confirmed that personal information (including health information) was taken from some of the clinics in our network,” the healthcare provider said on Wednesday
“As a health services provider, we know our patients and our people trust us with personal and medical information and we sincerely apologise for any concern and inconvenience this may cause them.”
The healthcare group said “a malicious actor” accessed the data, prompting it to report the incident to the Australian Cyber Security Centre, the Office of the Australian Information Commissioner, and law enforcement
The stolen personal information included names, dates of birth, addresses and contact details as well as Medicare, private health insurance and concession card details
Medical information and treatment details, including consultation notes, referral letters, and pathology or diagnostic results recorded by a GP were also breached
The medical group has sought an interim injunction from the supreme court of NSW ordering the accessed data is not used or published
Established in 2013, Partnered Health has more than 60 medical centres nationwide as well as skin cancer, allied health and mental health clinics, with its services reaching more than five million people
Bupa announced in June that it was acquiring Partnered Health, the latest major business to be struck by hackers
Data breach notifications to the Office of the Australian Information Commissioner reached a record high in 2025, with major incidents including a cyberattack on Qantasthat compromised the details of 5.7 million customers and reportedly leaked on the dark web
The office said it received 1205 data breach notifications in the 2025 calendar year, representing an eight per cent increase from 2024
Explore more on these topics
- Australia news
- Cybercrime
- news
Share
Reuse this content


