Australian Info and Cyber Security Last Week 26th June 2023: Efos machine provider Smartpay impacted OZ and NZ customers. Libraries Tasmania had an old-school data handling incident, placing PII on this public website. The HWL Ebsworth Lawyers breach is continuing to expose clients with the Big 4 banks and the Department of Defence joining the growing list. And to finish off we welcome our new National Cybersecurity Co-Ordinator, Air Marshal Darren Goldie.
and Cyber Security Awareness
Australian focus with a bit of New Zealand, vendor neutral, no vendor press releases, advertisement free.
Please follow the Source link to the original article to support the content owner. We've only provide a brief summary with metadata to assist in categorisation.
Australian InfoSec Incidents and Audits Issues
Incident: Dymocks warns customers of data breach after account information leaked on dark web | ABC News (Australia)
Australian Retail Privacy Breach, 08 September 2023: Dymocks warns customers of data breach after account information leaked on dark web. Customers’ addresses, email addresses, phone numbers, and membership details may have been compromised.
Australian Defence Agencies Third-Party Breach, 07 September 2023. Defence Housing Australia and Department of Veterans’ Affairs investigates third-party provider hack exposure. The breached service provider was not identified.
Incident: Pizza Hut Australia leaks one million customers’ details, claims ShinyHunters hacking group | Bitdefender
Australian Fastfood Company Hacked, 06 September 2023: Pizza Hut Australia leaks one million customers’ details, claims ShinyHunters hacking groups. Unauthorised access gained to companies Amazon Web Services buckets claiming to have exfiltrated 30 million customer order records.
Australian University Third-Party Data Breach, 1 September 2023: The University of Sydney has disclosed a data breach potentially affecting international students. The data breach involved a third-party provider, still undisclosed.
Incident: Thousands of donors to Australian charities, including Cancer Council and Canteen, have data leaked to dark web | ABC News (Australia)
Australian Telemarketer Breach, 23 August 2023: Pareto Phone, a Brisbane-based telemarketing company that contacts potential donors on behalf of charities, was hacked by cybercriminals in April. 70 charities, including Amnesty International Australia, Australian Conservation Foundation, Wilderness Society, Cancer Council Cancer, The Fred Hollows Foundation, Canteen, Heart Foundation, and Medecins Sans Frontieres.
Australian Education Ransomware Attack, 19 July 2023: Australian Academy of Vocational Education and Trades trading as Academia, has been hit by the Windows ransomware group Lockbit 3.0. The attackers have given the organisation a deadline of 24 July to get in touch and presumably negotiate a ransom payment.
Australian Mining Cyber Incident, 18 July 2023: Iron ore giant Fortescue Metals targeted by Russian ransomware group. Australian mining company confirms hack occurred on 28 May but data disclosed ‘was not confidential in nature’.
Audit: NSW’s local government audit found that 47% of councils did not have a cyber security plan | kirbyidau.com
Australian Audit Failure June 13 2023: NSW’s local government audit found that 47% of councils did not have a cyber security plan. IT policies and procedures were outdated or not in place at 43 councils.
Australian Critical Infrastructure Attack, 11 July 2023: Australian critical infrastructure company Ventia has been breached in an online attack. Ventia specialises in long-term operation, maintenance, and management of critical public and private assets and infrastructure.
Incident: Australian horse riding organisations caught up in cyber attack impacting 10,000 people | The Courier Mail
Australian Event Management Incident, 06 July 2023: Australian critical infrastructure company Ventia has been breached in an online attack. Information including names, email addresses, home addresses, phone numbers and bank details.
Australian Info & Cyber Security News
- APVMA added to HWL Ebsworth breach listby Richard Chirgwin on September 25, 2023
The Australian Pesticides and Veterinary Medicines Authority (APVMA) has confirmed that it was one of the federal government agencies impacted by the …
- Australian Federal Police claw back $45m lost to BEC scammersby Ry Crozier on September 25, 2023
The Australian Federal Police has claimed some success in thwarting in-progress business email compromise (BEC) scams, in cases where the incident is …
- AFP saves mum and dad business from cyber criminals | Australian Federal Policeby Australian Federal Police on September 25, 2023
The AFP has returned $45 million to Australian businesses targeted by cyber criminals in the past three years. As the AFP today challenges the …
- Aussies Warned Over Cyber-Security Risks After Large-Scale Hackby The Project on September 24, 2023
Sixty-five government departments and agencies have been caught up in the country’s latest ‘large scale’ cyber-attack on legal firm HWL Ebsworth, with stark ...
- Federal government rolls out plan to protect Aussies from cyber attacks | 9 News Australiaby 9 News Australia on September 24, 2023
One year on since the Optus cyber attack, Home Affairs Minister has revealed part of the Federal government’s plan to protect Australians from future breache...
- Troy Hunt scours the dark web for your stolen data — but he's just trying to helpby By Julian Fell on September 22, 2023
He's just "a dude on the web", but Troy Hunt has ended up playing an oddly central role in global cybersecurity. In April, the US Federal Bureau of …
- Pizza Hut says nearly two-hundred thousand customers affected by data breachby By Caitlin Rawling on September 21, 2023
Nearly 200,000 Pizza Hut Australia customers have had their data leaked, following a cyber attack earlier this month. On Wednesday, a spokesperson for …
- Medibank incurred $7.5 million in direct tech costs after cyber attackby Richard Chirgwin on September 21, 2023
Medibank has revealed a breakdown of its $46.4 million data breach expense amount incurred after a high-profile cyber incident last year. In the …
- Post Titleon September 20, 2023
- Digital ID legislation lands at lastby Richard Chirgwin on September 20, 2023
The federal government has introduced digital identity legislation to parliament, with the ACCC named in it as the preferred digital ID regulator. In …
- NSW DCS lands $146m for cyber security, digital projectsby Ry Crozier on September 19, 2023
The NSW Department of Customer Service will receive $80 million in funding for cyber security and $66 million for its digital restart fund, two areas …
- ASIC to target boards, execs for cyber failuresby Paul Smith, Ronald Mizen on September 19, 2023
“I can assure you that in the right case ASIC will commence proceedings if we have reason to believe those steps were not taken.” The Summit will also …