Australian Banking Ransomware Attack, 10 May 2024

Brisbane based non-bank lender Firstmac suffers ransomware attack by EMBARGO

500 gigabytes of data, including “full databases, source codes, sensitive customer data”

Company Statement: As of publishing no formal statement, customers notified
Source: Some Firstmac customer details breached in home lender hack | 9 News

View more incidents relating to Banking and Finance and from Queensland.

Some current and former customers of Brisbane-based non-bank home lender Firstmac were notified this afternoon that some of their details had been compromised in a “cyber incident”.

Firstmac told customers they had engaged IDCare, a national identity and cyber support community service, that will be available for free. “We remain committed to protecting the personal information of our customers, and we sincerely apologise for any concern this update may cause,” Firstmac said in a statement.

Mortgage Business cited a Firstmac spokesman as saying the lender had “engaged forensic experts to investigate what has happened” and an investigation was ongoing. “We recently experienced a cyber incident where an unauthorised third party accessed a limited part of our IT system,” Firstmac was quoted as saying.

Australian non-bank lender suffered a ransomware attack from a new gang, EMBARGO. Exfiltrating 500 gigabytes of data, including “full databases, source codes, sensitive customer data”. Data including their names, home addresses, phone numbers, dates of birth, Passport numbers, medicare numbers and driver’s license numbers, External bank account information, limited to just BSBs and account numbers, was compromised.

It is not yet clear how many customers were affected by the breach.