Incident: Contractor breach exposes 50k Aussie govt, bank staff records | iTnews

Posted by Steven Kirby | Nov 2, 2017 | Australia, Australian InfoSec Incident, Australian InfoSec Incidents 2017, Banking and Finance, Configuration, Data Breach, Federal Government, iTnews, Privacy Breach | 0 |

Australian Information Security Incident Reported: November 2 2017

The personal details of almost 50,000 Australian employees of several government agencies, banks and a utility have been exposed online by a third-party contractor.

iTnews can reveal that 48,270 personal records were left openly accessible as a result of a misconfigured Amazon S3 bucket.

The files he found include full names, passwords, IDs, phone numbers, and email addresses as well as some credit card numbers and details on staff salaries and expenses.

Insurer AMP was the most impacted, with 25,000 staff records exposed as a result of the misconfiguration.

Source: Contractor breach exposes 50k Aussie govt, bank staff records – Security – iTnews

About The Author

Steven Kirby

I provide independent and practical consultancy services through raising awareness and fostering the energy for change that delivers improved business management of information security governance, risk and compliance.

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

More Australian News

At a glance: data protection and management of health data in Australia
by Andrew Hii on April 24, 2024
Data protection and management Definition of ‘health data’ What constitutes ‘health data’? Is there a definition of ‘anonymised’ health data? Health …
Notifiable Data Breach Scheme to be enforced with new force: late reporting no longer tolerated
by Grace Appleford on April 24, 2024
As part of the stronger regulatory approach of the Office of the Australian Information Commissioner (OAIC), there is a renewed focus by the national …
Incident: Vic councils' after-hours call answering service breached - iTnews
by Steven Kirby on April 24, 2024
Australian Councils Ransomware Attack, 22 April 2024 Victorian councils’ OracleCMS after-hours call answering service breached Provider, OracleCMS …
Cyber fraud threat growing
by By Michael Atkin on April 23, 2024
Sabra Lane: Facebook and Instagram users are reporting more hackings of their accounts than ever. The consequence for some small businesses is that …
Hacked Facebook accounts leave businesses out of pocket as ombudsman records spike in Meta complaints
by By national consumer affairs reporter Michael Atkin on April 22, 2024
As a martial artist, Catherine Wilson gets up each day ready for a fight – but it is big tech that is proving to be her most difficult opponent. Her …
Defence earmarks $36bn for space and cyber spend
by Brandon How Reporter on April 21, 2024
Defence will spend up to $36 billion on space, cyber, and electronic warfare capabilities over the next decade, according to the federal government’s …
Cyber criminals focusing on superannuation as part of new scams | 9 News Australia
by 9 News Australia on April 21, 2024
Online-crime syndicates are turning their attention to superannuation, with warnings being issued that people’s future financial security has never been more...
Four Victorians arrested in global raids on cybercrime syndicate | 7 News Australia
by 7NEWS Australia on April 21, 2024
Four Victorians have been taken into custody in global raids on a cybercrime syndicate. It is accused of preying on the personal details of innocent Aussies ...
Incident: 300GB allegedly stolen from Australian immigration consultancy - cyberdaily.au
by Steven Kirby on April 21, 2024
Australian Ransomware Attack, 08 April 2024 Australia-based global immigration and education consultancy firm Aussizz Group has been listed on the …
Incident: Diabetes Western Australia reveals data breach - iTnews
by Steven Kirby on April 21, 2024
Australian Medical Centre Breach, 04 April 2024 Diabetes WA has disclosed a data breach affecting people who engaged with its telehealth service Breach …

Weekly Australian News and Monthly Incident Review Emails

No advertisements, marketing, sales, or unsolicited emails. Your email address is ONLY used to send the publications listed above.

Featured

Incident: Vic councils' after-hours call answering service breached - iTnews

Featured

Incident: 300GB allegedly stolen from Australian immigration consultancy - cyberdaily.au

Incident: Diabetes Western Australia reveals data breach - iTnews

Incident: Football Australia data breach reportedly exposes contracts, passports, and ticket information | ABC News Australia

Incident: Patient data hacked at Crace Medical Centre in Canberra

Featured

Audit: NSW's local government audit found that 47% of councils did not have a cyber security plan | kirbyidau.com

Featured

Audit: Australian Senate Estimates reveals 435 Chinese-made surveillance devices found at defence sites

Audit: Western Australia Auditor General's Local Government Information Security Audit 2021-22 reports 324 control weaknesses

Audit: Western Australia Auditor General's State Government Information Systems Audit 2021-22

Audit: Queensland Audit Office's State Entities 2022 reports deficiencies in information systems

Featured

Quote: Alex Webling "If we wish to have any hope of beating the bad guys at the cyber game...."

Featured

Quote: Denis Waitley "Expect the best, plan for the worst, and prepare...."

Quote: Willa Cather "No one can build his security upon...."

Quote: Meera Srinivasan "Home is where the Heart is ..."

Quote: Chinese Proverb "When planning for a year, plant corn. When planning..."

Incident: Contractor breach exposes 50k Aussie govt, bank staff records | iTnews