Australian community support service Meli reports cyber attack

The community support service Meli reports that they have been targeted by the Qilin ransomware gang. Meli is a not-for-profit community support organization based in North Geelong, Victoria, Australia. It offers various services, including family and community support, early childhood education, and foster care across the Geelong region and surrounding areas .

Meli is currently investigating the incident with the help of forensic specialists and cybersecurity advisors. The attack reportedly occurred on August 21, 2024, and involved the theft of 419,617 files totaling 215 GB of data.

To demonstrate the legitimacy of their claims, the Qilin group released 14 screenshots of stolen documents, including financial statements, confidentiality agreements, passport scans, and a Medicare card. The gang has not issued any ransom demands or set a deadline.

Meli emphasized that client services remain operational, although some internal processes may temporarily revert to manual methods. The organization is still assessing the full extent of the breach and the nature of the compromised data.

Meli has notified Victoria Police, the Australian Cyber Security Centre (ACSC), and other relevant government agencies about the attack. The organization is working to identify the extent of the exposed data and has advised precautionary steps for individuals concerned about their personal information.