While Brown didn’t know who the attackers were, he said they were “criminals” exploiting people’s personal information for their financial gain. Earlier on Monday, Brown announced he had asked the Ministry of Health to start a review of the incident before the end of the month. He said the review should assess the cause of the breach, review the adequacy of the data protections that were in place and consider the response to the incident. Brown said that under the Privacy Act, ManageMyHealth was responsible for keeping the data it held secure. This ransom post screenshot in relation to the ManageMyHealth data breach is from a popular hacking forum.

Source: New Zealand Herald January 05, 2026 00:40 UTC