Australian Information & Cyber Security
Australian InfoSec Incidents
InfoSec Quotes and Wisdom
Australian Audits Findings
Incidents/Audits by Location
Australian InfoSec Directory
Incidents/Audits by Industry
Media Incident Reports 2019
Media Incident Reports 2017
Media Audits Reports 2019
OAIC NDB 2019 (June)
Media Incident Reports 2018
OAIC NDB Scheme 2018
Australian Privacy Breach January 2022: Bunnings private customer data exposed in data breach. Names, phone numbers and email addresses have been exposed via a third-party website FlexBooker.
Australian Insider Threat December 2021: Charges over Victoria Police data breach. Accessing police information, disclosing police information, and intentionally communicating protected information.
Incident: Coles, Westpac, AMP and Department of Defence caught up in ‘significant’ data breach of Finite Recruitment | ABC News (Australia)
Australian Recruitment Ransomware Incident December 2021: Coles, Westpac, AMP and Department of Defence caught up in ‘significant’ data breach of Finite Recruitment. Conti claims to have stolen more than 300 gigabytes of data in this attack.
Australian Government Payroll Outage December 2021: Tens of thousands locked out of ATO Online accounts after payroll hack. Linked to ransomware attack on major payroll software provider Frontier Software last month.
Australian Ransomware Incident December 2021: NSW government casual recruiter Finite Recruitment suffers Conti ransomware hit. Attackers claimed to have stolen more than 300GB of financial and personal data.
Incident: Cyber criminals force shutdown of NSW budgeting system | Australian Financial Review (AFR)
Australian Cyber Security Incident December 2021: Cyber criminals force shutdown of New South Wales’ Prime/Oracle based budgeting system. The problem is part of a worldwide vulnerability identified in Log4j.
Incident: Personal details of up to 80,000 SA government employees accessed in cyber attack | ABC News (Australia)
Australian State Government Ransomware Attack December 2021: Up to 80000 South Australian Government employee data stolen in Frontier Software ransomware attack. Data accessed include names, dates of birth, tax file numbers, addresses, bank account details and pay details (remuneration, tax withheld, superannuation contributions).
Australian Voting Outage December 2021: New South Wales’ iVote online voting system failed on Saturday during the state’s local government elections. Update: NSWEC finds iVote system failure may have impacted three local election outcomes.
Australian Energy Provider Ransomware Attack November 2021. Queensland’s CS Energy has its corporate systems infected by ransomware. The incident has not impacted electricity generation.
West Australia Council Audit Report November 2021. WA councils fail to detect simulated cyber attack in audit. Only three out of 15 entities did so in a “timely manner”.
Australian Copyright Agency Cyber Incident November 2021: Agency investigates cyber incident and notifies 37,000-plus member.
Incident: Cyber attack affects Federal Group payroll system but staff will still be paid | ABC News (Australia)
Australian Group Ransomware Attack November 2021. Cyber attack affects Federal Group payroll system but staff will still be paid. Tasmania’s largest private sector employer has been affected by a cyber attack for the second time this year.
Australian Security Incident Summary
Brisbane based independent consultant specialising in GRC (Governance, Risk and Compliance) and IAM (Identity and Access Management).
Incidents and Audits by State
Banking and Finance
Building and Construction
Charities and Not For Profit
Defence and Military
Education and Training
Enterainment and Events
Industry Groups and Associations
Law and Legal
Medical and Health Care
Mining and Resources
News, Film and Media
Police and Law Enforcement Agencies
Policing and Law Enforcement
Politician and Politics
– Federal Government
– State Government
– Local Government
Real Estate and Property Management
Regulator and Authority
SMB Small to Medium
Sporting and Recreation
Telecommunications and Internet Service Provider
Transport and Logics
Travel and Accommodation
Australian InfoSec Directory
Cyber Quotes and Wisdom: J. M. Barrie “All of this has happened before, and it will all happen again.”
Quote: Michael McCormack “Never been a breach, the ABS assures us that this won’t happen into the future with this Census”
Cyber Quotes and Wisdom: Michael McCormack “Never been a breach, the ABS assures us that this won’t happen into the future with this Census”
Cyber Quotes and Wisdom: Hanif Kureishi “Security and safety were the reward of dullness.”
Cyber Quote: Michael Meade “A false sense of security is the only kind there is.”
Quote: Michael Madon “and the main problem wasn’t these evil employees or employees that wanted to hurt the company…”
Cyber Quote: “And the main problem wasn’t these evil employees or employees that wanted to hurt the company — the real problem was the employees that were terrific employees and want to do well, but they’re not focused on security.”
Michael Madon, Mimecast, co-founder of Ataata
Quote: Kevin Mitnick Companies spend millions of dollars on firewalls, encryption and secure access devices, and it’s money wasted, because none of these measures address the weakest link in the security chain.”
Cyber Quote: Kevin Mitnick “Companies spend millions of dollars on firewalls, encryption and secure access devices, and it’s money wasted, because none of these measures address the weakest link in the security chain.”
Quote: Bobbie Garrett “Make ‘business continuity’ ‘business as usual’ and embed it into your management routines as decisions are made, instead of an afterthought check off the box exercise later”
Cyber Quote: Bobbie Garrett “Make ‘business continuity’ ‘business as usual’ and embed it into your management routines as decisions are made, instead of an afterthought check off the box exercise later.”
Cyber Quote: Ginni Rometty “Cyber crime is the greatest threat to every company in the world”