Select Page

Incident: Sumo slammed by data breach, as energy and internet customers have details leaked | SHM

Incident: Sumo slammed by data breach, as energy and internet customers have details leaked | SHM

Australian Energy Privacy Breach, 15 May 2024

Victorian energy provide Sumo Energy slammed by data breach, as energy and internet customers have details leaked

Personal details of approximately 40,000 customers were compromised, including approximately 3,000 Australian passport numbers

Company Statement: Sumo Data Breach
Source: Sumo slammed by data breach, as energy and internet customers have details leaked | SHM

View more incidents relating to the Utilities sector and from Victoria.

Australian utility provider Sumo has suffered a data breach, the company has confirmed, with customers’ personal information, including credit scores and licence numbers, posted online.

Sumo executive chairman Kel Fitzalan emailed customers on Wednesday, apologising and informing them that an issue with a “third-party file storage application” had caused the breach. According to Fitzalan, information taken included full names, addresses, dates of birth, mobile phone numbers, credit scores and licence numbers. Sumo, which is headquartered in Victoria, is thought to have more than 60,000 customers across its electricity, gas and internet products.

“On Monday 13 May 2024, Sumo became aware of an incident where customer data was accessed by an unknown person via a third-party file storage application used by Sumo. We can confirm that none of Sumo’s systems were affected.

Sumo has sent email notification to just over 40,000 people that Sumo has identified so far who have been impacted. If Sumo does not have an email address or the email address Sumo has is invalid, Sumo will send a letter.”

A poster – who goes by the forum name “OriginalCrazyOldFart” – also linked to a site hosting details of a vast number of accessible Amazon web buckets, where the bulk of the data was stored.

 


About The Author

Steven Kirby

I provide independent and practical consultancy services through raising awareness and fostering the energy for change that delivers improved business management of information security governance, risk and compliance.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Please follow the Source link to the original article to support the content owner. We only provide a brief summary with metadata to assist in categorisation.

More Australian News

Privacy Commissioner completes preliminary inquiries into Qantas 2025 data incident

The Australian Privacy Commissioner has published a report of the OAIC’s preliminary inquiries into the 2025 Qantas Airways Limited (Qantas) data … [...]

Privacy reform and responsible data behaviour for NFPs

For not-for-profits (NFP), trust is built not only on mission, but on how personal information is handled. As privacy expectations rise and AI … [...]

Is your board ready for a cyber crisis? The GC's role in making it a priority

Directors are now expected to oversee cyber risk, but many still struggle with what effective oversight looks like. Here’s how GCs can make the … [...]

Partnered Health confirms dozens of clinics potentially compromised by cyber attack

Australian GP network says patient healthcare data, including Medicare and DVA numbers, was accessed after a “malicious actor accessed some of our … [...]

How a timing system error brought down Telstra's network | ABC NEWS

Telstra is facing fresh scrutiny after confirming that a software error caused a nationwide outage. Technology reporter Cameron Wilson explains how a failure in the network's timekeeping system disrupted Telstra's [...]

AI agents are becoming the enterprise's most privileged users. And most organisations don't know it yet

AI agents are rapidly becoming a staple of the enterprise identity landscape. Yet, many organisations are deploying them faster than they can govern … [...]

Mobile telcos cautious on expanding emergency comms beyond voice

Australia’s top mobile carriers have cautiously supported expanding emergency communications beyond voice calls but warned that it will require … [...]

JB Hi-Fi Group finds new cyber security leader

JB Hi-Fi Group has appointed Kanchana Devi as its head of group cyber security following the departure of Daniel Eastley in April. Devi announced her … [...]

Australia to establish government AI office

Australia will create an office ⁠at ⁠the heart of government to manage the development of AI standards, seeking to balance the need to attract … [...]

Data breach! Lifeline Australia confirms staff data compromised following hacking claims

The threat actor, known as 2019, offers employee and volunteer staff data on a hacking forum, while Lifeline says some data is “doctored to include … [...]

Scam alert: Fake purchase callback scams

What's happening Scammers are sending fake messages that say you bought something you didn’t buy and tells you to call a phone number to stop or … [...]

Shares
Share This

Discover more from Australian Cyber Aware

Subscribe now to keep reading and get access to the full archive.

Continue reading