Select Page

Incident: UPDATE NDIA data breach claimed to impact 11,000 “records” | iTnews

Posted by | Nov 29, 2023 | , , , , , , , | 0 |

Incident: UPDATE NDIA data breach claimed to impact 11,000 “records” | iTnews

Australian Insider Threat, 29 November 2023

National Disability Insurance Agency NDIA data breach claimed to impact 11,000 “records”

NDIA staffer charged with leaking participants’ data, acting NDIA provider also arrested

Company Breach Information: 28 November 2023 NDIA detects data breach
Company Media Release: 28 November 2023 Two charged following fraud investigations

Source: NDIA data breach claimed to impact 11,000 “records” | iTnews
Source: NDIA staffer charged with leaking participants’ data | iTnews

Featured Breach Series: HWL Ebsworth Lawyers

View more incidents relating to Insider Threats, and other Australian National Disability Insurance Scheme incident reports.

The National Disability Insurance Agency (NDIA) staffer charged in connection with a data breach is alleged to have shared around 11,000 “records” with at least one service provider associated with the scheme.

Update Jan 19 2004: 644 NDIS users not told which medical records leaked, seven months after HWL Ebsworth hack | iTnews
Almost 650 National Disability Insurance Scheme (NDIS) participants and prospective participants have still not been told which of their health records were leaked on the dark web in June last year.

NDIA was also caught up in the HWL Ebsworth breach this year, which exposed information recorded in dozens of federal agencies’ systems earlier this year.

NDIA is the government organisation that implements and manages the NDIS National Disability Insurance Scheme, which is the scheme that provides funding and services for people with disabilities, their families and carers.

Government services minister Bill Shorten stated “It appears … the charge is that this person is alleged to have provided about 11,000 records, not all participants, to providers.”

He noted it was “not a cyber breach” of the agency, but instead a case of insider threat.

Some of the information disclosed on participants included “full name, date of birth, gender address, including postcode,” but that “in a small number of cases … further details [were] disclosed.”

The agency also did not disclose when it first detected the unauthorised disclosure of participants’ of the National Disability Insurance Scheme (NDIS). Saying it “believes this incident is financially motivated” and that all impacted individuals would be directly contacted by the NDIA.

NDIS Statement

 

Rate:

About The Author

Steven Kirby

I provide independent and practical consultancy services through raising awareness and fostering the energy for change that delivers improved business management of information security governance, risk and compliance.

Related Posts

Incident: Electronic medical records locked down as cyber-hackers target hospitals | Nine News

Incident: Electronic medical records locked down as cyber-hackers target hospitals | Nine News

June 22, 2019

Tropical storms sever sub-sea links between Australia and Asia | ARN

Tropical storms sever sub-sea links between Australia and Asia | ARN

August 31, 2017

Incident: Qld undercover cop stood down over “Computer Hacking” claims | iTnews

Incident: Qld undercover cop stood down over “Computer Hacking” claims | iTnews

December 5, 2018

Incident: Victorian Government apologises after thousands of gun owners’ personal details released in email error | ABC News (Australia)

Incident: Victorian Government apologises after thousands of gun owners’ personal details released in email error | ABC News (Australia)

January 18, 2017

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Please follow the Source link to the original article to support the content owner. We only provide a brief summary with metadata to assist in categorisation.

More Australian News

Australians lose access to 'dangerous' Anthropic AI models after Trump order
Australians lose access to 'dangerous' Anthropic AI models after Trump order

Artificial intelligence company Anthropic has taken its most advanced AI models offline after it was ordered by the US government to suspend access … [...]

How to beat cyber criminals and protect your passwords | 7NEWS
How to beat cyber criminals and protect your passwords | 7NEWS

Australians are being warned to rethink what they share online, with scammers now using AI to crack passwords and steal personal information faster than ever before. Subscribe and set 🔔 [...]

Gov looks for upstream threat blocking by telcos, cloud operators
Gov looks for upstream threat blocking by telcos, cloud operators

The government wants to give telcos and cloud providers the power “to enable upstream blocking of cyber threats” as a key action under the second … [...]

Exclusive: Napoleon Perdis allegedly breached following threat actor claims
Exclusive: Napoleon Perdis allegedly breached following threat actor claims

Australian luxury make-up and cosmetics brand Napoleon Perdis has allegedly suffered a cyber incident after a threat actor claimed responsibility for … [...]

Exclusive: 2019 claims breach of Australian lingerie retailer
Exclusive: 2019 claims breach of Australian lingerie retailer

An Australian online and in-store women’s lingerie, swimwear and underwear retailer has allegedly been breached following claims made by a threat … [...]

Parents warned after ‘cyber security breach’ at South Australia’s Reynella East College
Parents warned after ‘cyber security breach’ at South Australia’s Reynella East College

Investigations into the incident are ongoing, but the school warns that IT systems are expected to be offline for some time. • Thu, 11 Jun 2026 • … [...]

Services Australia privacy incident saw pensioner concession cards sent to the wrong recipients
Services Australia privacy incident saw pensioner concession cards sent to the wrong recipients

Services Australia has disclosed a privacy incident it detected last month, which led to the halting of the printing of pensioner concession cards. • … [...]

Student data compromised in second University of Western Australia data breach in 6 months
Student data compromised in second University of Western Australia data breach in 6 months

The university’s Student Information Management System was exposed after access credentials were “unintentionally exposed online”. • Thu, 11 Jun 2026 … [...]

Exclusive: Ochre Health confirms patient data from its Tuggeranong clinic potentially compromised
Exclusive: Ochre Health confirms patient data from its Tuggeranong clinic potentially compromised

Threat actor 2019 claimed to have breached the data of more than 25,000 patients via a third-party platform – and it’s already been sold on a hacking … [...]

Exclusive: One Nation blames “fearful Labor goons” for DDoS site crash
Exclusive: One Nation blames “fearful Labor goons” for DDoS site crash

Pauline Hanson’s popularity is surging, and so was the malicious traffic targeting One Nation’s donation page today. • Fri, 12 Jun 2026 • … [...]

Takedown! AFP helps dismantle alleged $542m cyber crime money laundering network
Takedown! AFP helps dismantle alleged $542m cyber crime money laundering network

Australian investigators have helped disrupt an alleged international money laundering operation accused of processing criminal proceeds, including … [...]

Government agencies fail to disclose AI use | ABC NEWS
Government agencies fail to disclose AI use | ABC NEWS

Australia rejected an EU-style approach to regulating AI and tasked each government agency with managing its own use of the technology. The ABC can now reveal dozens of federal agencies [...]

Shares
Share This

Discover more from Australian Cyber Aware

Subscribe now to keep reading and get access to the full archive.

Continue reading