Communication Failures Mar Healthcare Hack Response as Patient Data Compromised

New Zealand-based Manage My Health portal suffered a cyberattack on December 30, potentially exposing data of approximately 126,000 patients. The company has been criticized for delayed communication while hackers claiming to be "Kazu" threatened to leak over 400,000 files unless a ransom is paid within 48 hours.

Breach Details and Company Response

Manage My Health, a portal connecting patients with healthcare providers, detected the cyberattack on December 30, 2025, but faced criticism for its communication approach following the incident. The company published its first statement on December 31, with updates continuing through January 5, 2026.

Forensic investigations revealed that approximately 7% of the portal's 1.8 million registered patients may have been affected. The hackers accessed a specific collection of documents, though the main patient database and user credentials appear to have remained secure. No evidence suggests data was modified or destroyed during the breach.

"We acknowledge we could have done a better job at communication, however, our priority was to secure patient data and work on the accuracy of all information before providing it to practices and patients. This has been our paramount consideration," Manage My Health stated on its website.

The company promised transparency moving forward, noting that "There are constraints, both legal and practical to the fast dissemination of this information."

Ransom Demands and Ongoing Threats

According to RNZ reporting on January 4, cybercriminals identifying themselves as "Kazu" claimed responsibility for the attack and issued an ultimatum: unless Manage My Health paid an unspecified ransom within 48 hours, the group would release more than 400,000 allegedly stolen files.

This escalation adds urgency to the situation, particularly as Manage My Health has acknowledged that around 126,000 patients (7% of 1.8 million registered users) could be affected by the breach. The company has not publicly addressed the ransom demand in its statements.

Security experts point to this incident as part of a troubling pattern of increasing healthcare cyberattacks. Like the 2023 UnitedHealth breach that affected millions and the repeated Oracle healthcare data compromises in recent years, the Manage My Health attack demonstrates the healthcare sector's continued vulnerability. Organizations implementing comprehensive data breach prevention strategies may be better positioned to withstand similar attacks.

Communication Failures and Response Planning

The company's handling of the breach has faced significant criticism, particularly regarding what some describe as a lack of timely communication to affected individuals and healthcare providers.

"We acknowledge that this delay has been a cause for concern," Manage My Health admitted in its latest update. "We will make every effort to continue to work hard to provide you with accurate and reliable information as urgently as practicable, in consultation with various stakeholders."

The company has outlined its notification strategy, stating that direct communication with affected medical practices will begin this week and continue until all are notified. Regular updates will also be posted on the company's website as long as information is available and appropriate to share.

Healthcare cybersecurity experts note that this communication timeline raises concerns about compliance with data breach notification regulations. In many jurisdictions, healthcare providers are required to notify affected individuals within specific timeframes following the discovery of a breach. The incident highlights the critical importance of having a well-defined cyber crisis management plan that includes clear communication protocols.

Industry Implications and Security Considerations

The Manage My Health breach highlights several critical issues in healthcare cybersecurity:

1. Communication protocols during breaches remain challenging, with organizations often struggling to balance thorough investigation with prompt notification.

2. Healthcare organizations continue to be prime targets for cybercriminals, with sensitive patient data being particularly valuable on illicit markets.

3. Ransom demands are becoming increasingly common in healthcare breaches, placing organizations in difficult ethical and financial positions.

This incident comes as industry research indicates 51% of healthcare organizations have committed to increasing cybersecurity investments in the coming year, recognizing the growing threat landscape. Many are focusing on enhanced cloud security measures as healthcare data increasingly moves to cloud-based platforms.

Healthcare data breaches often result in more severe consequences than other sectors due to the sensitive nature of medical information and the potential impact on patient care. According to a 2023 IBM Cost of a Data Breach Report, healthcare organizations face the highest average cost per breached record compared to any other industry.

How Patients Can Protect Themselves

For patients concerned about the Manage My Health breach or similar incidents, security experts recommend:

1. Monitor accounts and medical statements carefully for any unauthorized activity or unfamiliar charges.

2. Consider placing fraud alerts on credit files as a precautionary measure.

3. Be vigilant about phishing attempts that might leverage stolen information to appear legitimate.

While waiting for official notification, patients should not panic but should maintain heightened awareness around their personal and medical information. The breach represents yet another reminder in what security professionals have dubbed "the most dangerous six weeks of the year" – the period when cybercriminals often intensify their activities.

Patients should also consider implementing multi-factor authentication on all their medical portal accounts where available, as this additional security layer can help prevent unauthorized access even if login credentials are compromised.

As Manage My Health works to resolve this situation, the incident serves as a stark reminder of the critical importance of robust cybersecurity protocols and clear communication strategies in healthcare organizations handling sensitive patient information.