**Cybersecurity Company Uncovers Identity Behind Manage My Health Hack**

In a significant breakthrough, a cybersecurity company has identified the individual responsible for hacking into the Manage My Health portal, compromising sensitive health data of thousands of New Zealanders. The company, International Online Crime Co-ordination Centre (IOC3), has been tracking the hacker, who goes by the alias "Kazu," and is now working with authorities to bring them to justice.

**A Record-Breaking Breach**

The breach, considered one of the largest in New Zealand's history, occurred when hackers gained access to Manage My Health's patient records database. Kazu demanded a staggering $60,000 in exchange for not releasing the stolen data online. However, Manage My Health was granted a High Court injunction preventing anyone from accessing or sharing the compromised information.

**IOC3's Investigation**

The IOC3 has been tracking Kazu's activities, following a trail of digital breadcrumbs that led them to suspect an individual with a history of cyber attacks on various institutions globally. While the company is cautious not to reveal too much about their investigation, they have shared some details with RNZ.

"We're just mindful that we're still looking into this individual, and we don't want to mistakenly drive this person underground by making them aware that there are these kinds of investigations ongoing into them," said IOC3 Executive Director Caden Scott. "We definitely want justice; we want this person to be looked into and arrested as a result of their actions."

**A Prolific Hacker with Global Reach**

According to Scott, Kazu has a history of cyber attacks on institutions worldwide, and the breach at Manage My Health is just one in a long list of high-profile hacks. "They've attacked numerous other institutions from across the entire globe," he warned.

Health companies like Manage My Health hold extremely sensitive data, making them prime targets for hackers. Scott emphasized that paying ransom demands does not guarantee the data won't be leaked: "Paying that ransom doesn't guarantee that the data isn't going to be leaked... They might ask you for half a million dollars, you pay that, and then they decide: 'Well, we can also sell this database to everyone as well and make even more money'."

**A Collaborative Effort**

The National Cyber Security Centre (NCSC) is working closely with IOC3, police, Health New Zealand, and other agencies to mitigate the impact of the breach and prevent further exploitation of the leaked data.

"Attribution can be very complex," said NCSC Chief Operating Officer Mike Jagusch. "It requires significant analysis to have the necessary level of confidence to attribute activity to an actor or group."

The investigation is ongoing, with authorities working tirelessly to identify Kazu's true identity and bring them to justice. As Scott emphasized, "We want this person to be looked into and arrested as a result of their actions."