Australian Information Security Incident Reported: February 06 2019

Bunnings has confirmed it notified the Office of the Australian Information Commissioner of a data breach, after an individual staffer set up an employee performance monitoring database on his home computer and exposed it to the internet.

The database also contained log in credentials for staff and developers, some in plan text, he added.

Furthermore, contact details of 1194 customers were exposed, including email and physical addresses, and phone numbers.

Source: Bunnings exposed staff performance database