Category: Confidentiality
Incident: Dymocks warns customers of data breach after account information leaked on dark web | ABC News (Australia)
Australian Retail Privacy Breach, 08 September 2023: Dymocks warns customers of data breach after account information leaked on dark web. Customers’ addresses, email addresses, phone numbers, and membership details may have been compromised.
Read More
Incident: Pizza Hut Australia leaks one million customers’ details, claims ShinyHunters hacking group | Bitdefender
Australian Fastfood Company Hacked, 06 September 2023: Pizza Hut Australia leaks one million customers’ details, claims ShinyHunters hacking groups. Unauthorised access gained to companies Amazon Web Services buckets claiming to have exfiltrated 30 million customer order records.
Read More
Incident: University of Sydney caught up in third-party data breach | iTNews
Australian University Third-Party Data Breach, 1 September 2023: The University of Sydney has disclosed a data breach potentially affecting international students. The data breach involved a third-party provider, still undisclosed.
Read More
Incident: Thousands of donors to Australian charities, including Cancer Council and Canteen, have data leaked to dark web | ABC News (Australia)
Australian Telemarketer Breach, 23 August 2023: Pareto Phone, a Brisbane-based telemarketing company that contacts potential donors on behalf of charities, was hacked by cybercriminals in April. 70 charities, including Amnesty International Australia, Australian Conservation Foundation, Wilderness Society, Cancer Council Cancer, The Fred Hollows Foundation, Canteen, Heart Foundation, and Medecins Sans Frontieres.
Read More
Incident: Fortescue Metals admits it suffered breach, Cl0p claims credit | iTWire
Australian Mining Cyber Incident, 18 July 2023: Iron ore giant Fortescue Metals targeted by Russian ransomware group. Australian mining company confirms hack occurred on 28 May but data disclosed ‘was not confidential in nature’.
Read More
Incident: Perpetual says some personal info compromised in attack on supplier | iTnews
Australian Wealth Management Incident 28 June 2023: Wealth and asset management firm Perpetual Limited says some personal info compromised in attack on supplier. First names, surnames and addresses and bank account details maybe compromised.
Read More
Incident: Human error, not data breach, behind Port Arthur staff information appearing ‘live’ on library website | ABC News (Australia)
Australian Library Data Handling Incident, 20 June 2023: Human error, not data breach, behind Port Arthur staff information appearing ‘live’ on library website. Personal information exposed comprised dates of birth, resumes, addresses, school records and telephone numbers.
Read More
Incident: AU and NZ – SmartPay investigating breach after ransomware attack | iTnews
Australian Eftpos Ransomware Attack, 19 June 2023: Australian and New Zealand listed company SmartPay investigating breach after ransomware attack. The Eftpos hardware provider says criminals stole customer data.
Read More
Incident: FIIG Securities isolates client-facing systems after attack | iTnews
Australian Finance Broker Privacy Breach, 12 June 2023: Australian brokerage firm FIIG Securities isolates client-facing systems after attack. “Identification details and documents” purportedly accessed.
Read More
Incident: Toyota does U-turn, confirms thousands of Australian customers hit by latest data breach | drive.com.au
Australian Automotive Incident 01 June 2023: Toyota does U-turn, confirms thousands of Australian customers hit by latest data breach. Access key was publicly available on GitHub for almost five year.
Read More
Audit: Australian Senate Estimates reveals 435 Chinese-made surveillance devices found at defence sites
Defence Internal Audit Finding 31 May 2023: Australian Senate questioning reveals 435 Chinese-made surveillance devices found at defence sites. Defence initially claimed there was only one device.
Read More
Incident: Thousands of identifiable Northern Territory patient health files sent to overseas-based software vendor in government data breach | ABC News (Australia)
Australian Medical Data Handling Incident 25 May 2023: Thousands of identifiable Northern Territory patient health files sent to overseas-based software vendor in government data breach. NT Health says the onus is on individuals to check if the privacy of their medical records has been breached.
Read More
Incident: Drug and alcohol tests of graduate paramedics revealed in Ambulance Victoria data breach | The Guardian
Australian Medical Data Handling Incident 04 May 2023. Drug and alcohol tests of graduate paramedics revealed in Ambulance Victoria data breach. The documents had become accessible to all employees on Ambulance Victoria’s internal intranet.
Read More
Incident: TechnologyOne investigates ‘cyber incident’ on M365 system | iTnews
Australian SaaS Provider Breach 10 May 2023: TechnologyOne investigates ‘cyber incident’ on M365 system. “Unauthorised third party” has accessed the company’s internal Microsoft 365 platform.
Read More
Incident: Crown Princess Mary Cancer Centre in Westmead Hospital in cyber attack, hackers threatening to release stolen data | ABC News (Australia)
Australian Medical Ransomware Attack 04 May 2023: Crown Princess Mary Cancer Centre in Westmead Hospital in cyber attack, hackers threatening to release stolen data. The ransomware group Medusa demand, pay AUD100,000 within a seven-days.
Read More
Incident: Australian law firm HWL Ebsworth hit by Russian-linked Blackcat ransomware attack | The Guardian
UPDATED Australian Law Firm Ransomware Attack, 02 May 2023: Australian law firm HWL Ebsworth hit by Russian-linked Blackcat ransomware attack. Tasmanian Government and Office of the Australian Information Commissioner hit as clients. Hacking 4TB of data including IDs, finance reports, accounting data, client documents and credit card details.
Read More
Incident: Amnesty International Australia slow with disclosure after December hack | SMH
Australian Not-for-profit Hacked 28 April 2023: Amnesty International Australia slow with disclosure after December hack. Amnesty said none of the information met the legal threshold that would have required Amnesty to disclose.
Read More
Incident: Coles confirms its customers impacted by Latitude Financial data breach | ABC News (Australia)
Australian Retail Third-Party Breach, 15 March 2023: Coles confirms its customers impacted by Latitude Financial data breach. Coles says it has not been informed of how many of its customers have been impacted, the data dates back as far as 2005.
Read More
Incident: Woman charged with accessing private data on NSW gov computer | iTnews
Australian Unauthorised Access Incident, 13 April 2023: Woman charged with accessing private data on NSW gov computer. Personal data which was shared with others for the purpose of criminal activity (kidnapping).
Read More
Incident: Bug briefly exposed Service NSW data to other users | iTnews
Australian State Government Cyber Incident, 04 April 2023: Bug briefly exposed Service NSW data to other users. ‘Technical issue’ may have exposed data of 3700 customers.
Read More