Hackers are publishing the names of Medibank customers who received abortions or mental health treatment as they attempt to extort millions from the private health insurer.  

A cybersecurity expert has warned that using patients’ distress and embarrassment to force out ransom payments is an increasingly popular approach among cybercriminals, and there is “no light at the end of the tunnel” for the patients caught in the crossfire.  

When the Medibank data hack was first revealed last month, phone numbers and Medicare card numbers were the initial focus of attention.  

But this week, they reportedly demanded $15.6 million — the equivalent of one US dollar for each customer hacked — from Medibank or else they would release health records.