"sipped" data / financial fraud + data corruption
... sipped files in a folder called 'full' It's nice to know the miscreants only sipped the data.
"is not sufficient to enable identity and financial fraud," according to Medibank's Thursday admission. Wrong-o. Financial fraud is possible with that data, albeit against the insurance companies. And data corruption is possible against the individual patients. Bad guy/gal shows up to a hospital, provides victim's medical record number, and, (a) gets "free" medical care; (b) corrupts the victim's medical records with details of the perpetrator's heart condition.