Mercury IT was recently hit by a ransomware attack that potentially compromised the sensitive data it hosts for its multiple clients in NewZeland, including health insurer Accuro, BusinessNZ, the NZ National Nurses Association and the Ministry of Justice.
The government agencies whose data has been impacted in the attack include some providers contracted to Te Whatu Ora, Health NZ.
The company immediately investigated the incident to understand the nature of the information involved and the extent to which any information has been copied out of the system and also notified the various organisations.
TPRM report: https://scoringcyber.rankiteo.com/company/mercuryit
"id": "mer20871222",
"linkid": "mercuryit",
"type": "Cyber Attack",
"date": "12/2022",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"
{'affected_entities': [{'industry': 'Health',
'location': 'New Zealand',
'name': 'Accuro',
'type': 'Health Insurer'},
{'industry': 'Business',
'location': 'New Zealand',
'name': 'BusinessNZ',
'type': 'Business Organization'},
{'industry': 'Health',
'location': 'New Zealand',
'name': 'NZ National Nurses Association',
'type': 'Professional Association'},
{'industry': 'Government',
'location': 'New Zealand',
'name': 'Ministry of Justice',
'type': 'Government Agency'},
{'industry': 'Health',
'location': 'New Zealand',
'name': 'Te Whatu Ora, Health NZ',
'type': 'Healthcare Provider'}],
'data_breach': {'data_exfiltration': 'Potentially copied out of the system',
'type_of_data_compromised': 'Sensitive data'},
'description': 'Mercury IT was recently hit by a ransomware attack that '
'potentially compromised the sensitive data it hosts for its '
'multiple clients in New Zealand, including health insurer '
'Accuro, BusinessNZ, the NZ National Nurses Association and '
'the Ministry of Justice.',
'impact': {'data_compromised': 'Sensitive data for multiple clients'},
'investigation_status': 'Ongoing',
'ransomware': {'data_exfiltration': 'Potentially copied out of the system'},
'response': {'communication_strategy': 'Notified various organisations'},
'title': 'Mercury IT Ransomware Attack',
'type': 'Ransomware Attack'}