Category: Australian InfoSec Incidents 2021
NZ Incident: New Zealand’s AA Traveler “@WeLoveNZ” data breach
New Zealand Data Breach May 2022: Vulnerability in @WeLoveNZ database causes data breach at New Zealand’s AA Traveller; names, email address, passwords and phone numbers compromised
Read More
Incident: Charges over Victoria Police data breach | 7News
Australian Insider Threat December 2021: Charges over Victoria Police data breach. Accessing police information, disclosing police information, and intentionally communicating protected information.
Read More
Incident: Coles, Westpac, AMP and Department of Defence caught up in ‘significant’ data breach of Finite Recruitment | ABC News (Australia)
Australian Recruitment Ransomware Incident December 2021: Coles, Westpac, AMP and Department of Defence caught up in ‘significant’ data breach of Finite Recruitment. Conti claims to have stolen more than 300 gigabytes of data in this attack.
Read More
Incident: Tens of thousands locked out of ATO Online accounts after payroll hack | iTnews
Australian Government Payroll Outage December 2021: Tens of thousands locked out of ATO Online accounts after payroll hack. Linked to ransomware attack on major payroll software provider Frontier Software last month.
Read More
Incident: NSW government casual recruiter suffers ransomware hit | ZDNet
Australian Ransomware Incident December 2021: NSW government casual recruiter Finite Recruitment suffers Conti ransomware hit. Attackers claimed to have stolen more than 300GB of financial and personal data.
Read More
Incident: Cyber criminals force shutdown of NSW budgeting system | Australian Financial Review (AFR)
Australian Cyber Security Incident December 2021: Cyber criminals force shutdown of New South Wales’ Prime/Oracle based budgeting system. The problem is part of a worldwide vulnerability identified in Log4j.
Read More
Incident: Personal details of up to 80,000 SA government employees accessed in cyber attack | ABC News (Australia)
Australian State Government Ransomware Attack December 2021: Up to 80000 South Australian Government employee data stolen in Frontier Software ransomware attack. Data accessed include names, dates of birth, tax file numbers, addresses, bank account details and pay details (remuneration, tax withheld, superannuation contributions).
Read More
Incident: NSW iVote fails during local council elections | ZDNet
Australian Voting Outage December 2021: New South Wales’ iVote online voting system failed on Saturday during the state’s local government elections. Update: NSWEC finds iVote system failure may have impacted three local election outcomes.
Read More
Incident: Queensland’s CS Energy has its corporate systems infected by ransomware | iTnews
Australian Energy Provider Ransomware Attack November 2021. Queensland’s CS Energy has its corporate systems infected by ransomware. The incident has not impacted electricity generation.
Read More
Incident: Australia’s Copyright Agency investigates cyber incident | iTnews
Australian Copyright Agency Cyber Incident November 2021: Agency investigates cyber incident and notifies 37,000-plus member.
Read More
Incident: Cyber attack affects Federal Group payroll system but staff will still be paid | ABC News (Australia)
Australian Group Ransomware Attack November 2021. Cyber attack affects Federal Group payroll system but staff will still be paid. Tasmania’s largest private sector employer has been affected by a cyber attack for the second time this year.
Read More
Incident: Chris 21 payroll software provider hit by suspected ransomware attack | iTnews
Australian Ransomware Attack November 2021. Frontier Software provider of Chris 21 payroll software hit by suspected ransomware attack. The cyber attack left 330 employers without automated payroll.
Read More
Incident: Queensland water supplier Sunwater targeted by hackers in months-long undetected cyber security breach | ABC News (Australia)
Australian Water Utility Hacked November 2021: Queensland water supplier Sunwater targeted by hackers in months-long undetected cyber security breach. A Queensland Audit Office report found “threat actors” had targeted an older, more vulnerable version of the system.
Read More
Incident: SA Ambulance Service patients’ personal information stolen from consultancy firm | ABC News (Australia)
Australian Health Services Privacy Breach November 2021: South Australia Ambulance Service patients’ personal information stolen from consultancy firm. The personal details of 28,000 patients have been lost on a stolen a storage device.
Read More
Incident: NSW Education department hit by cyber attack | iTnews
Australian Education Cyber Attack July 2021: NSW Education department hit by cyber attack just days before school term resumes. The attack had forced it to deactivate “a number of internal systems as a precaution.
Read More
Incident: Uniting Communities investigating possible data breach amid ‘cyber incident’ | ABC News (Australia)
Australian Healthcare Cyber Incident June 2021 – Uniting Communities investigating possible data breach amid ‘cyber incident’, access to some of its technology systems had been blocked.
Read More
Incident: Kununurra Department of Education worker charged with illegally accessing confidential information | The West Australian
Australian Unauthorised Access Incident June 2021: Western Australia – Kimberley – Kununurra Department of Education worker charged with illegally accessing confidential information. Charged after his office was raided by WA police last month
Read More
Incident: NSW Health confirms data breached due to Accellion vulnerability | ZDNet
Australian Vulnerability Incident June 2021: NSW Health is the latest Australian government entity to confirm being impacted by a vulnerability in the Accellion file transfer system. Different types of information, including identity information and in some cases, health-related personal information, were included in the attack.
Read More
Incident: Domain hit by cyber attack, warns users to be careful with rental inquiries | SMH
Australian Real Estate Cyber Incident May 2021: Domain hit by cyber attack, warns users to be careful with rental inquiries. There is a risk that some of your personal information may have been accessed by an unauthorised third party.
Read More
Incident: UniSA locks down devices and Citrix solution after cyber attack | Arnet
Australian University Incident May 2021. UniSA locks down devices and Citrix solution after cyber attack. A number of PCs and laptops have been disabled, while Citrix VA is now unavailable.
Read More
