Hutt Valley DHB has been made aware of an unauthorised intrusion to the digital information systems of Tū Ora Compass Health in August.
A careful investigation has not yet been able to determine with any certainty whether the unauthorised access resulted in any information being taken.
The unauthorised access is a crime and has been referred by Tū Ora Compass Health PHO to the Police. Tū Ora provides data management services to THINK Hauora, and some patient services to Cosine, Te Awakairangi Health Network, and Ora Toa. The current population of these areas are around 648,000 people, but including those now deceased or who have moved away from the area, the data covers nearly 1 million people.
None of the PHOs hold private information kept by GPs as part of the notes they take when you consult your doctor.
Tū Ora has implemented new security controls and is continuing to analyse information related to the incident to help inform the response.
Additional monitoring and cyber stress testing of leading health sector agencies’ computer security is being undertaken – including at Capital & Coast, Hutt Valley and Wairarapa DHBs.
Agencies across the public sector are experiencing an increasing number of cyber-attacks, including regular phishing scams along with more serious attacks like that experienced by Tū Ora. Capital & Coast, Hutt Valley and Wairarapa DHBs are working with Tū Ora to improve their cyber security measures.
We are also continually reviewing and strengthening the protocols and security measures to ensure our own systems are safe, however this incident has highlighted the very real threat that our systems are under.
The outcome of this work including the measures put in place to increase resilience is expected to be completed by early in the New Year.
What to do if you are concerned?
Advice to anyone concerned about these incidents is to contact 0800 499 500 or +64 6 927 6930 (internationally).
Where can I access more information?
Tū Ora Compass has more information on their website, including Q&As.