Australian Information Security Incident Reported: December 03 2018
The Commonwealth Bank is urgently investigating a potential data breach that may have given its staff access to customers’ sensitive medical information.
Medical information supplied by an unknown number of customers to CommInsure was made available to other arms of the bank, including to staff who decide whether to approve or decline loan applications.
Australian Information Security Incident Reported: August 30 2018
Australian business process outsourcing company Onehalf left medical information for hundreds of individuals and bank account numbers for several large Australian enterprises exposed in a set of unsecured public GitHub repositories, the security firm UpGuard says.
Australian Information Security Incident Reported: July 26 2018
An Australian medical booking app, which boasts more than 15 million users a year, is passing on patients’ information to personal injury lawyers.
The ABC has obtained secret documents from plaintiff law giant Slater and Gordon that reveal HealthEngine was passing on a daily list of prospective clients to the firm, based on their personal medical information, as part of a “referral partnership pilot” last year.
Australian Information Security Incident Reported: June 02 2018
About 10,000 customers of the Commonwealth Bank of Australia, the country’s biggest bank, may have had their personal information compromised due to emails being sent to the cba.com domain, instead of cba.com.au.
The bank said it had confirmed that none of this data had been used and that it was deleted from the cba.com email servers.
“From January 2017, we have been blocking internal emails addressed to the cba.com domain name.”