What happened
In mid-2020 the ASX-listed aged-care provider Regis Healthcare was hit by the Maze ransomware group, which copied some data and published certain personal information publicly [regis-itnews], [regis-co]. Regis notified the OAIC and ACSC.
Current status
Disclosed. The number of people affected was not disclosed, so none is asserted here.
Why it matters
Aged-care providers hold sensitive resident and staff data; double-extortion ransomware that both encrypts and leaks turns an IT incident into a privacy breach.