Incident: Ransomware attack at Australian childcare provider Building Futures Montessori causes privacy breach and data loss

Posted by Steven Kirby | May 13, 2022 | Australia, Australian InfoSec Incidents 2021, Availability, Confidentiality, Data Breach, In the Press, Integrity, Privacy Breach, Services | 0 |

Australian Childcare Privacy Breach, May 13 2022

Ransomware attack at Australian childcare provider Building Futures Montessori

Parents’ Names, email address, phone numbers, children’s names and date of birth compromised

Source: Building Futures Data breach / ransomware notice | Troy Hunt

Australian childcare provider Building Futures Montessori has experienced a ransomware attack that not only caused 5 weeks of data to be lost but also exfiltrated privacy related data to an unknown party.

Security investigator Troy Hunt posted a tweet showing a letter from Building Futures Montessori to users confirming the incident and providing advice to parents.

“Data breach / ransomware notice. Person who sent it to me asked: “Why would someone hack a daycare?”

Easy: because they have money. And it was possibly entirely indiscriminate.”

– Troy Hunt

About The Author

Steven Kirby

I provide independent and practical consultancy services through raising awareness and fostering the energy for change that delivers improved business management of information security governance, risk and compliance.

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

More Australian News

Cyber attack on Sydney radiology company | 9 News Australia
by 9 News Australia on December 2, 2023
Police and cyber security experts are investigating an attack on a Sydney radiology company as fears of personal data being compromised lingers. | Subscribe ...
OAIC alleges Australian Clinical Labs hack resulted from lacklustre security measures
by Daniel Croft on December 1, 2023
Australian Clinical Labs (ACL) parent company Medlab back in February 2022 announced that it had suffered a cyber attack at the hands of the Quantum …
Government boosts Digital ID funding by $145.5m
by Ry Crozier on December 1, 2023
The federal government is set to put an extra $145.5 million into expanding the Digital ID system and scheme over the next four years, adding to the …
Services Australia vets customer data after Brisbane medical group breach
by Ry Crozier on December 1, 2023
Top Health Doctors, a Brisbane-based GP and skin cancer clinic group, experienced an email account compromise incident in September that may have …
Queensland passes mandatory data breach notification scheme
by Ry Crozier on November 30, 2023
Queensland’s parliament has passed a mandatory data breach notification scheme, affecting state agencies from mid-2025 and local governments from …
Incident: NDIA data breach claimed to impact 11,000 "records" | iTnews
by Steven Kirby on November 29, 2023
Australian Insider Threat, 29 November 2023 National Disability Insurance Agency NDIA data breach claimed to impact 11,000 “records” NDIA staffer …
NDIA staffer charged with leaking participants' data
by Jeremy Nadel on November 29, 2023
A National Disability Insurance Agency (NDIA) employee has been arrested and charged following an investigation into an insider leak of recipients' …
Australians lost $1.2 million to NBN impersonation scams this year
by Kenn Anthony Mendoza on November 29, 2023
Australians have fallen prey to NBN impersonation scams with losses totalling to $1.2 million during the first nine months of the year, a 21% decline …
DP World says personal info of employees stolen during attack
by Sam Varghese on November 29, 2023
Stevedore DP World Australia says personal information of current and previous employees has been both accessed and exfiltrated during a recent …
Government probe into massive Optus outage to investigate triple-0 access and public messaging
by By political reporter Matthew Doran on November 27, 2023
The federal government's inquiry into this month's massive Optus outage will hone in on concerns Australians were unable to access the triple-0 …

Weekly Australian News and Monthly Incident Review Emails

No advertisements, marketing, sales, or unsolicited emails. Your email address is ONLY used to send the publications listed above.

Featured

Incident: NDIA data breach claimed to impact 11,000 "records" | iTnews

Featured

Incident: Port Adelaide Football Club Hackers post Port files online

Incident: TissuPath data breach victim upset by delayed notification | ABC News (Australia)

Incident: Major Australian port operator shuts down amid cyber security incident, impacting goods in and out of the country | ABC News (Australia)

Incident: SA Health patients caught up in data breach of third-party platform Personify Care | ABC News (Australia)

Featured

Audit: NSW's local government audit found that 47% of councils did not have a cyber security plan | kirbyidau.com

Featured

Audit: Australian Senate Estimates reveals 435 Chinese-made surveillance devices found at defence sites

Audit: Western Australia Auditor General's Local Government Information Security Audit 2021-22 reports 324 control weaknesses

Audit: Western Australia Auditor General's State Government Information Systems Audit 2021-22

Audit: Queensland Audit Office's State Entities 2022 reports deficiencies in information systems

Featured

Quote: Denis Waitley "Expect the best, plan for the worst, and prepare...."

Featured

Quote: Willa Cather "No one can build his security upon...."

Quote: Meera Srinivasan "Home is where the Heart is ..."

Quote: Chinese Proverb "When planning for a year, plant corn. When planning..."

Quote: Elijah Shaw "In the battle of real world vs..."

Incident: Ransomware attack at Australian childcare provider Building Futures Montessori causes privacy breach and data loss

Ransomware attack at Australian childcare provider Building Futures Montessori

Parents’ Names, email address, phone numbers, children’s names and date of birth compromised