Quick Read
- Cybersecurity group IOC3 identified the individual behind the Manage My Health data breach.
- The hacker, known as “Kazu,” had demanded US$60,000 for stolen patient data.
- IOC3 Executive Director Caden Scott called for the individual’s arrest, citing multiple past attacks.
- New Zealand’s National Cyber Security Centre confirmed awareness and ongoing collaboration with police and Health New Zealand.
- The breach is considered one of New Zealand’s largest privacy incidents, impacting highly sensitive health data.
WELLINGTON (Azat TV) – A leading cybersecurity organization, the International Online Crime Coordination Centre (IOC3), has announced it has identified the individual responsible for the extensive data breach that targeted Manage My Health, a privately owned patient records company in New Zealand. This development, confirmed on January 30, 2026, marks a pivotal moment in one of New Zealand’s largest privacy incidents, shifting the focus towards accountability and the pursuit of justice.
The hacker, operating under the alias “Kazu,” had previously demanded a ransom of US$60,000 for the stolen health data. Samples of the compromised information were published online, though all related posts were reportedly removed earlier this month. The IOC3 has been actively tracking Kazu since the breach, which exposed highly sensitive personal health data.
Cybersecurity Group Identifies “Kazu” and Seeks Justice
The International Online Crime Coordination Centre (IOC3), a group dedicated to combating online harm including fraud and extremism, has been at the forefront of the investigation into the Manage My Health breach. According to IOC3 Executive Director Caden Scott, the organization has pinpointed the individual believed to be behind the “Kazu” persona. Scott emphasized the group’s desire for justice, stating, “We definitely want justice. We want this person to be looked into and this person to be arrested as a result of their actions.”
The IOC3 has shared its investigative findings with New Zealand’s RNZ, which has agreed not to disclose the individual’s name or specific details that could compromise ongoing investigations. Authorities, including the New Zealand Police and the National Cyber Security Centre (NCSC), have also been alerted to the intelligence gathered by IOC3. Scott highlighted the delicate nature of such investigations, explaining that care is needed to avoid inadvertently driving the suspect further underground by making them aware of the active pursuit.
The Manage My Health Breach: A National Concern
The Manage My Health data breach stands as one of the most significant privacy incidents in New Zealand’s history. The company had previously secured a High Court injunction to prevent any unauthorized access to or sharing of the stolen data. The breach underscores the vulnerability of healthcare institutions, which often hold vast amounts of deeply personal and sensitive information, making them prime targets for cybercriminals.
Caden Scott also offered critical advice regarding ransomware attacks, strongly discouraging victims from paying ransoms. He warned that paying does not guarantee data will not be leaked and can embolden hackers to demand more or sell the data anyway. Instead, Scott advocated for collaboration with law enforcement agencies as the most effective response to such cybercrimes.
Official Response and the Complexity of Attribution
The National Cyber Security Centre (NCSC) has acknowledged the public information regarding the identification of those claiming responsibility for the Manage My Health attack. Mike Jagusch, Chief Operating Officer of the NCSC, confirmed that the center is actively collaborating with New Zealand Police, Health New Zealand, and other relevant agencies. Their collective efforts are focused on mitigating the impact of the breach and preventing further exploitation of the compromised data.
Jagusch elaborated on the intricate process of attributing cyber activity, which he described as “very complex” and requiring “significant analysis to have the necessary level of confidence.” He explained that public attribution of cyber incidents to specific actors or state-backed groups is a comprehensive, whole-of-government undertaking, reserved for instances where it aligns with the national interest. This measured approach highlights the challenges in confirming identities and actions in the digital realm, even with strong intelligence.
The identification of the alleged Manage My Health hacker represents a crucial step in holding cybercriminals accountable and underscores the increasing sophistication of international cybersecurity efforts. It also brings into sharp focus the complex balance between public transparency and the strategic imperatives of ongoing investigations, particularly when dealing with highly sensitive personal data.