Australians could be handed greater control over who can access their Medicare card details amid fears the information can be too easily obtained.
An independent report, released on Saturday, has suggested tighter security following a review ordered by the federal government in July after a small batch of card numbers were sold on the dark web.
It noted that while there had been no risk to patients' health records as a result of the sale, Medicare card numbers are susceptible to theft for identity fraud and other "illicit activities".
Illegally obtained Medicare details can also be used to fraudulently make claims and access taxpayer-funded health services.
The report has recommended that doctors and other health professionals be required to get consent from patients - either in writing or verbally - before accessing their Medicare numbers.
"In addition to providing patients with more control, this would also increase consumer awareness about how their Medicare information is used and shared," it said.
The federal government is also being urged to phase out the ability to access Medicare numbers over the phone.
Roughly 580,000 calls are made to the Department of Human Services requesting card access, but security checks aren't as robust as the online portal.
