It stated the federal government had “blundered” once they reduce off the roles of many IT specialists “safeguarding the general public well being system”.
ManageMyHealth confirmed final week it had recognized a safety incident involving “unauthorised entry” to its platform.
It believed between 6% and seven% of the roughly 1.8 million registered customers could have been affected.
PSA nationwide secretary Fleur Fitzsimons stated the breach was a “wake-up name for the whole well being sector in New Zealand”.
“We’ve got seen it earlier than within the public well being system with the Waikato Hospital ransomware assault in 2021, and but this authorities didn’t heed that lesson in forcing Well being NZ to chop the roles of specialists working digital companies.
“The dangers are too excessive to play quick and unfastened with knowledge programs – it is a ticking time bomb.”
Hospitals had been utilizing outdated programs however not had specialists who may perceive their weaknesses, she stated.
She known as on the privateness commissioner to rethink a earlier request by the PSA to analyze the affect of cuts to Well being NZ’s digital companies workforce.
Well being Minister Simeon Brown beforehand stated authorities businesses had been working with ManageMyHealth to completely perceive the scope of the breach and to guard the privateness of sufferers.
“This can be a regarding breach of affected person knowledge and Well being NZ is working carefully with ManageMyHealth to make sure it’s being appropriately addressed.
“At this stage, there isn’t a proof any Well being NZ programs, together with My Well being Account, have been compromised as ManageMyHealth has separate programs.”
