New Zealand Information Security Incident Reported: August 09 2019
Air NZ Airpoints customers caught in phishing scam
‘We have secured the two affected accounts and are conducting a thorough investigation’ ANZ
Air New Zealand is telling Airpoints members some of their personal information has been caught in a phishing scam.
While Airpoints accounts, passwords and credit card details were not accessed, the airline says some information relating to membership profiles may have been compromised.
The airline’s loyalty scheme has about two million members but the number affected is unclear.
The Transport Agency has admitted 82 data breaches involving personal information prompting a call for an independent assessment of its cyber security.
Human error was the main reason given for mishandling of personal information ranging from traffic offences, to details of driver licences and individuals’ medical fitness to drive, debts and debt collection actions.
A missing NZ Transport Agency computer drive containing information about more than 1000 staff is a much bigger deal than the organisation has admitted.
The USB drive disappeared while being couriered from the agency’s Auckland office to a Wellington security firm producing new staff identity cards.
The data, which was not password protected or encrypted, was a major data privacy breach that warranted an independent review of security measures, and the agency should be offering identity theft insurance to affected employees.
Australian Information Security Incident Reported: July 12 2018
A company that issues Aviation Security Identity Cards (ASICs) — designed to stop organised criminals and terrorists from accessing planes and other restricted airport zones — has been hacked, leading to concerns that Australian airport security may have been compromised as a result.