Category: Confidentiality
Incident: Australian Bunnings Customers Appear To Be Caught Up in FlexBooker Breach | Crikey
Australian Privacy Breach January 2022: Bunnings private customer data exposed in data breach. Names, phone numbers and email addresses have been exposed via a third-party website FlexBooker.
Read More
Incident: Coles, Westpac, AMP and Department of Defence caught up in ‘significant’ data breach of Finite Recruitment | ABC News (Australia)
Australian Recruitment Ransomware Incident December 2021: Coles, Westpac, AMP and Department of Defence caught up in ‘significant’ data breach of Finite Recruitment. Conti claims to have stolen more than 300 gigabytes of data in this attack.
Read More
Incident: NSW government casual recruiter suffers ransomware hit | ZDNet
Australian Ransomware Incident December 2021: NSW government casual recruiter Finite Recruitment suffers Conti ransomware hit. Attackers claimed to have stolen more than 300GB of financial and personal data.
Read More
Incident: Personal details of up to 80,000 SA government employees accessed in cyber attack | ABC News (Australia)
Australian State Government Ransomware Attack December 2021: Up to 80000 South Australian Government employee data stolen in Frontier Software ransomware attack. Data accessed include names, dates of birth, tax file numbers, addresses, bank account details and pay details (remuneration, tax withheld, superannuation contributions).
Read More
Audit: WA councils fail to detect simulated cyber attack in audit | iTnews
West Australia Council Audit Report November 2021. WA councils fail to detect simulated cyber attack in audit. Only three out of 15 entities did so in a “timely manner”.
Read More
Incident: Australia’s Copyright Agency investigates cyber incident | iTnews
Australian Copyright Agency Cyber Incident November 2021: Agency investigates cyber incident and notifies 37,000-plus member.
Read More
Incident: Cyber attack affects Federal Group payroll system but staff will still be paid | ABC News (Australia)
Australian Group Ransomware Attack November 2021. Cyber attack affects Federal Group payroll system but staff will still be paid. Tasmania’s largest private sector employer has been affected by a cyber attack for the second time this year.
Read More
Audit: Queensland Audit Office (QAO) Water 2021 Report finds one breach and significant control weaknesses | ABC News (Australia)
Australian Utility Audit Report November 2021: Queensland Audit Office (QAO) Water 2021 Report finds one breach and significant control weaknesses in the security of information systems. Sunwater has acknowledge it was the organisation reported breached in the report.
Read More
Incident: SA Ambulance Service patients’ personal information stolen from consultancy firm | ABC News (Australia)
Australian Health Services Privacy Breach November 2021: South Australia Ambulance Service patients’ personal information stolen from consultancy firm. The personal details of 28,000 patients have been lost on a stolen a storage device.
Read More
NZ Incident – Ransomware attack: Waikato DHB supporting patients after documents dumped online | stuff
New Zealand Ransomware Attack June 2021: Waikato District Health Board supporting patients after documents dumped online, compromised documents include, patient and employee, and the DHB’s financial affairs.
Read More
Incident: Kununurra Department of Education worker charged with illegally accessing confidential information | The West Australian
Australian Unauthorised Access Incident June 2021: Western Australia – Kimberley – Kununurra Department of Education worker charged with illegally accessing confidential information. Charged after his office was raided by WA police last month
Read More
Audit: Fed govt cyber resilience unchanged since last year: auditor | iTnews
Australian Audit Fail June 2021: Australian National Audit Office (ANAO) finds cyber resilience unchanged since last year. Only one of 18 agency audited hits Essential Eight baseline.
Read More
Incident: NSW Health confirms data breached due to Accellion vulnerability | ZDNet
Australian Vulnerability Incident June 2021: NSW Health is the latest Australian government entity to confirm being impacted by a vulnerability in the Accellion file transfer system. Different types of information, including identity information and in some cases, health-related personal information, were included in the attack.
Read More
Audit: Dozens of NSW councils still without basic cyber security controls, audit finds | iTnews
Australian Audit Fail May 2021<: Dozens of NSW councils still without basic cyber security controls, audit finds. Poor management of cyber security at 58 of the state’s 128 local councils, nine county councils and 13 joint organisations.
Read More
Incident: Domain hit by cyber attack, warns users to be careful with rental inquiries | SMH
Australian Real Estate Cyber Incident May 2021: Domain hit by cyber attack, warns users to be careful with rental inquiries. There is a risk that some of your personal information may have been accessed by an unauthorised third party.
Read More
Audit: 328 weaknesses found by WA Auditor-General in 50 local government systems | ZDNet
Western Australian Audit Report November 2020. WA registry system flaws force auditor to delay findings by 18 months. ‘Highly unusual step’ taken to protect foundational system.
Read More
Incident: Service NSW worker corrupt: ICAC | AAP
Australia Data Insider Access Incident May 2021: A Service NSW worker could face criminal charges involving accessing a restricted database. ICAC said, the agency had “misplaced confidence” in the effectiveness of its controls.
Read More
Incident: NSW Labor takes a hit from Windows Avaddon ransomware | iTwire
Australia Political Ransomware Attack May 2021: The NSW branch of the Labor Party appears to have suffered a Windows ransomware attack, with the Avaddon strain having been used to attack the party’s network. Photocopies of an Australian passport, a driver’s licence and a number of other documents have been posted online.
Read More
Incident: Telstra service provider Schepisi Communications hit by cyber attack as hackers claim SIM card information stolen | The Australian
Australia Telstra Provider Breach May 2021: Telstra service provider hit by cyber attack as hackers claim SIM card information stolen. Hackers have claimed they have gained access to “tens of thousands” of SIM cards after a cyber attack against an Australian telecom firm
Read More
Incident: Enterprises need to change passwords following ClickStudios, Passwordstate attack | ZDNet
Australia Software Company Cyberattack April 2021: Enterprises need to change passwords following Australian privilege access management company ClickStudios, Passwordstate attack. Advises “please reset all the stored passwords, VPNs/Firewall/Switches, local accounts or any server passwords”
Read More
