Select Page

Incident: Orchard worker recruiter exposed sensitive personal data | iTnews

Incident: Orchard worker recruiter exposed sensitive personal data | iTnews

Australian Workers Data Exposed, October 29 2020

Orchard Tech a Melbourne company recruiting horticultural workers exposed sensitive personal data

AWS Simple Storage Service (S3) instance containing thousands of sensitive personal documents left open for anyone to access for over a month.

Source: Orchard worker recruiter exposed sensitive personal data | iTnews
More reports from: iTnews.

Melbourne-based security researcher Sami Toivonen found the open S3 storage instance on October 24 and told iTnews it contained images of passports, driver’s licences, tax forms, and employment contracts.

One search engine found 12,709 files including 532 passport and 422 driver’s licence images in the Orchard Tech S3 bucket.

Orchard Tech chief executive was contacted by Toivonen on October 27 and arranged for the S3 instance to be secured on that day.

About The Author

Steven Kirby

I provide independent and practical consultancy services through raising awareness and fostering the energy for change that delivers improved business management of information security governance, risk and compliance.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

More Australian News

Weekly Australian News and Monthly Incident Review Emails

No advertisements, marketing, sales, or unsolicited emails. Your email address is ONLY used to send the publications listed above.

* indicates required


Shares
Share This