The dicussion in this podcast offers a comprehensive overview of the Medibank cyber incident in 2022, detailing the catastrophic data breach suffered by Australia's largest health insurer, affecting approximately 9.7 million current and former customers. The breach, linked to Russian national Aleksandr Gennadievich Ermakov and the REvil ransomware group, was primarily enabled by critical security lapses, notably the absence of multi-factor authentication (MFA) on key systems and poor third-party credential management. We analyse the incident's chronology, from the initial compromise via a contractor’s device to the exfiltration of sensitive health data and Medibank’s subsequent refusal to pay the ransom, which led to phased data leaks on the dark web. Furthermore, we cover the ongoing legal fallout, including civil penalty action by the Office of the Australian Information Commissioner (OAIC) for Privacy Act violations and class actions alleging negligence, highlighting significant lessons for global cybersecurity governance and the need for stricter basic security controls.