Last updated 1 month ago
Manage My Health, New Zealand's largest patient portal operator in the healthcare sector, experienced a cyberattack in December 2025 that potentially exposed data of nearly 110,000 users. The breach was publicly acknowledged in January 2026, indicating a potential gap of approximately one month between incident occurrence and public disclosure.
An alleged attacker using the alias Kazu claimed responsibility for the breach, though specific initial access vectors, exploitation techniques, and affected infrastructure details remain unconfirmed. The compromised data includes patient portal information, though the exact data types exfiltrated—such as medical records, personal identifiers, or authentication credentials—have not been publicly specified.
No post-incident developments regarding regulatory actions, litigation, ransom payments, or containment milestones were reported in the available intelligence summary.
New Zealand government has ordered an official review of the Manage My Health breach, representing new regulatory action beyond the initial incident reporting.
A healthcare patient portal serving 110,000 users experienced a significant breach where threat actor attribution occurred before full attack chain details were confirmed, highlighting the need for robust monitoring and rapid forensic capabilities in critical healthcare infrastructure. The month-long gap between the December attack and January disclosure suggests potential challenges in incident assessment or notification processes for patient-facing healthcare platforms.
Sign in to join the discussion.
Company
Industry
Location
Discovered
Disclosed
Records Affected
Attack Vector
Threat Actor
Continent
Country
Industry
Attack Vector
Threat Actor