Select Page

Incident: Vic councils’ after-hours call answering service breached – iTnews

Posted by | Apr 22, 2024 | , , , , , , | 0 |

Incident: Vic councils’ after-hours call answering service breached – iTnews

Australian Councils Ransomware Attack, 22 April 2024

Victorian councils’ OracleCMS after-hours call answering service breached

Provider, OracleCMS hacked by Lockbit with around 50 clients’ data compromised

Company Statement: OracleCMS Cyber Incident
Whitehorse City Council – Data security breach involving Oracle CMS
Manningham Council – Data cyber security incident and Manningham after hours service
Knox City Council – Cyber security incident
Yarra City Council – CYBER SECURITY INCIDENT
Lot’s more but you get the idea…

Source: Vic councils’ after-hours call answering service breached – iTnews

View more incidents relating to ransomware, Local Government, Managed Service Providers.

The personal details of thousands of individuals and data held by a number of public institutions have been posted online after a call centre operator was hacked by an infamous ransomware gang.

OracleCMS Ransom

The provider, OracleCMS, acknowledged the incident and said that “a portion” of its data was accessed and leaked online. OracleCMS operates call centres for a number of clients across Sydney, Melbourne, Brisbane, Perth and Adelaide

“Available evidence suggests that the impacted data is limited to corporate information, contract details, invoices, and triage process workflows,” OracleCMS said.

“Any personal information, if present, is anticipated to be basic contact information as appears in contracts and invoices.

“We are advised that this data presents a low risk of misuse.”

In a folder labelled “Clients”, there are more than 50 folders for organisations, ranging from local councils to aged-care services. More than a dozen local councils are on the list, including Campbelltown Council, Tweed Shire Council, Yarra City Council and Dandenong City Council. Other OracleCMS clients listed in the leak include several law firms, a popular real estate agent, and the Queensland branch of the Philadelphia Church of God.

Lockbit is widely regarded as one of the biggest ransomware operators in the world, and was responsible for nearly 20 per cent of all reported Australian ransomware attacks from 1 April 2022 to 31 March 2023.

OracleCMS Statement

OracleCMS - Knox City Council Statement

 

Rate:

About The Author

Steven Kirby

I provide independent and practical consultancy services through raising awareness and fostering the energy for change that delivers improved business management of information security governance, risk and compliance.

Related Posts

Incident: Frontier Software breach spreads to NSW Health | iTnews

Incident: Frontier Software breach spreads to NSW Health | iTnews

March 9, 2023

Incident: Government contractor accessed private data over ‘grudge’

Incident: Government contractor accessed private data over ‘grudge’

September 14, 2020

Incident: First National ‘dealing with authorities’ after reported information leak | ZDNet

Incident: First National ‘dealing with authorities’ after reported information leak | ZDNet

January 8, 2019

Incident: Home Affairs, Administrative Appeals Tribunal websites hit by cyber attacks | SBS News

Incident: Home Affairs, Administrative Appeals Tribunal websites hit by cyber attacks | SBS News

October 6, 2023

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Please follow the Source link to the original article to support the content owner. We only provide a brief summary with metadata to assist in categorisation.

More Australian News

Exclusive: INC Ransom claims cyber attack on Australian engineering service company
Exclusive: INC Ransom claims cyber attack on Australian engineering service company

Threat actors have claimed a cyber attack on an Australian engineering solutions company and are threatening to publish data they allegedly … [...]

Exclusive: Major cleaning and facility services firm confirms third-party cyber incident
Exclusive: Major cleaning and facility services firm confirms third-party cyber incident

Major private cleaning and facility services firm Menzies Group has confirmed a cyber incident that occurred after a third-party IT provider was … [...]

Exclusive: Australian College of Business Intelligence investigating Qilin ransomware claims
Exclusive: Australian College of Business Intelligence investigating Qilin ransomware claims

A Sydney-based vocational college has found no evidence of compromised student data after being listed on the leak site of a prolific hacking group. • … [...]

Victorian bulk porting scammer gets over two years in prison
Victorian bulk porting scammer gets over two years in prison

A 35-year-old man from Lynbrook, south-east Melbourne, has received a prison sentence of two years and two months, with a 12-month non-parole period, … [...]

NSW cyber cops bust alleged bullion-buying BEC bandits
NSW cyber cops bust alleged bullion-buying BEC bandits

NSW Police have charged three people over an alleged $600,000 business email compromise (BEC) scam operation, after detectives caught a young woman … [...]

Miners’ data targeted as hackers hold software provider to ransom
Miners’ data targeted as hackers hold software provider to ransom

Dozens of Australian mining companies are scrambling to access their key technology systems after a major software supplier to the sector was … [...]

Instructure dealing with Canvas cyberhackers a dangerous tactic, say experts
Instructure dealing with Canvas cyberhackers a dangerous tactic, say experts

The company that runs Canvas has painted a target on its back for future extortion attempts by making a deal with hackers, according to cybersecurity … [...]

Exclusive: Hospitality IT provider allegedly breached by Qilin
Exclusive: Hospitality IT provider allegedly breached by Qilin

Threat actors have claimed a cyber attack on an Australian hospitality and gaming industry supplier, having listed the firm on the dark web. • Fri, 15 … [...]

ACCC welcomes another year of funding for the National Anti-Scam Centre
ACCC welcomes another year of funding for the National Anti-Scam Centre

The Australian consumer watchdog is pleased with the overall funding boost of $67.7 million over four years in the 2026–27 budget. • Thu, 14 May 2026 … [...]

Report: Business email compromise attacks surged dangerously in April
Report: Business email compromise attacks surged dangerously in April

BEC attacks rose 151 per cent month on month in April, with advanced fee and gift card fraud key drivers. • Thu, 14 May 2026 • Security *]:clear-none … [...]

Scope Systems confirms cyber incident, says no data loss occurred
Scope Systems confirms cyber incident, says no data loss occurred

Western Australia-based software deployment specialist and reseller Scope Systems has disclosed a cyber incident but said no data loss occurred. • … [...]

Instructure breach: ShinyHunters says ‘matter has been resolved’
Instructure breach: ShinyHunters says ‘matter has been resolved’

The hackers behind the global Canvas LMS breach have said they are no longer “seeking money” from any victim. • Wed, 13 May 2026 • … [...]

Shares
Share This

Discover more from Australian Cyber Aware

Subscribe now to keep reading and get access to the full archive.

Continue reading