MediMap Health Platform Breach Leads to Patient Data Manipulation

MediMap, a New Zealand medication management platform, reported a data breach on February 22, 2026. Health New Zealand and the National Cyber Security Centre are currently assisting the company in its response efforts.

Attackers breached into the MediMap portal and modified sensitive patient information, including changing resident statuses to "deceased." 

The compromised data includes:

• Full names
• Dates of birth
• Prescriber details
• Location of care
• Resident status
• Medication histories and dosages

The nature of the attack and the number of affected individuals is not disclosed.

MediMap took the platform offline and entered "maintenance mode" to prevent further unauthorized activity and protect patient safety. This forced healthcare providers to switch to manual (paper-based) prescriptions.

The company notified the New Zealand Police, the Office of the Privacy Commissioner, and the Ministry of Health. External cybersecurity experts are performing data integrity checks to identify all unauthorized changes before restoring services.

An official notice is available on the MediMap website.