16th April 2026: Further update in relation to recent cyber incident
In February 2026, we posted an update on our website in relation to a booking system disruption and cyber incident Midwest Aero Medical Services (MAMS) was experiencing.
What happened?
MAMS recently experienced a cyber incident when an unauthorised third party accessed a part of our IT system. As soon as we became aware, we engaged leading experts to investigate and provide us with advice.
We have been urgently working with our experts to respond to the incident and provide our staff, patients and community with updates relevant to them. As stated in our earlier update, cyber incidents are complex and take time to investigate accurately.
We are now in a position where we know more about what occurred and are able to share accurate information.
Our experts have confirmed the incident is contained.
What have we done?
We carried out a comprehensive investigation into the incident and have identified that some personal information of patients was accessed.
The types of information impacted generally include basic personal and contact information (name, email address, phone number, address, date of birth, gender, ethnicity, religion and/or relationship status), Medicare card information (including number and, in some instances, expiry date and/or list number) and health information relevant to the services provided.
We have notified the Australian Cyber Security Centre, WA Police, the Office of the Australian Information Commissioner and Services Australia about the incident. Services Australia is in the process of implementing additional protections on Medicare card numbers identified as involved in this incident.
We are committed to providing individuals with the information and support they need in response to this incident.
What can you do?
Following a cyber incident, there can be an increased risk of scam attempts. To mitigate the risk, we recommend you do the following:
- remain alert to any suspicious email, SMS or telephone communications that are disguised to look like they come from someone you know or trust;
- verify communications by confirming the identity of the sender and avoiding clicking suspicious links. This includes checking email names and domains, by hovering your mouse over the sender’s email address. If you are unsure, ask someone you know to check before you share any information;
- monitor your bank statements closely for unusual transactions and advise your bank if you identify anything suspicious; and
- be alert to phishing scams. Phishing scams are attempts by scammers to trick people into providing their personal information, including passwords or credit card numbers often by creating a sense of urgency. These scams could target you through post, phone or email.
Medicare cards - visit https://www.servicesaustralia.gov.au/databreach for further information on how you can protect your information following a data breach.
Health information - we understand individuals may have concerns. However, our experts have advised that there is a low risk that this information will be targeted for misuse. Cyber groups typically seek out other types of information that can more easily be manipulated for financial gain (such as active credit card information). That being said, we appreciate that patients may have concerns. If you experience any distress in relation to this, we encourage you to contact our dedicated team using the details below or speak to your general practitioner or other treating practitioner.
Further information is available:
- www.scamwatch.gov.au - about how to avoid scams;
- www.cyber.gov.au - about online safety and cyber security; and.
- https://www.oaic.gov.au/privacy/your-privacy-rights/tips-to-protect-your-privacy/ - about how to protect your identity.
Loss of data
As part of our investigation, we identified some loss of data (which includes patient information) between July 2025 and February 2026. While our recovery efforts remain ongoing, given the time that has now passed since the incident was first identified, we have made the decision to operate on the assumption that some of this data will not be recovered.
We are asking patients prior to and during appointments to fill in any gaps in their medical records to ensure we are continuing to provide a high standard of clinical care. We will continue to communicate with our patients and the community about this potential data loss to ensure we have not missed anything. We thank you for your patience and support throughout this process.
Next steps
The wellbeing of our staff, patients and community is our highest priority, and we are committed to providing you with the support you need in response to this incident.
We sincerely apologise for any concern or inconvenience the incident may have caused.
If you would like further information on the incident, how it may impact you, or the steps you can take to protect your information, please contact our dedicated team at support@mwaeromedical.com.au.
Feb 2026- Important update – Booking System Disruption
Midwest Aero Medical Services is currently experiencing a booking system issue that requires us to reconfirm patient bookings.
Some of our appointment information is currently unavailable or incomplete. As such, if you have an upcoming appointment, please contact the clinic by calling (08) 9956 8999 or emailing reception@mwaeromedical.com.au so we can confirm or rebook your appointment.
If you do not have an upcoming appointment, no action is required. Please note that our medical clinic is still open for new appointments.
We understand this may be frustrating and thank you for your patience while we work through this issue.
As background, this issue is the result of a cyber incident that recently impacted our systems. As soon as we became aware, we immediately engaged leading cyber experts to provide advice. As a precaution, we took all servers offline, however, our clinic remains open and we continue to provide care for our patients and the community.
While our investigation is ongoing, our experts have confirmed the incident is contained. We are now in the process of bringing servers back online securely.
Cyber incidents are complex and take time to investigate accurately. We will provide relevant updates to patients as soon as we learn more from our investigation.
We have notified the Australian Cyber Security Centre and continue to liaise with them.
We apologise for any concern this incident may have caused and thank you for your support and patience during this time.
If you have any questions, please contact us at support@mwaeromedical.com.au and we will answer your questions as quickly as possible.