technology

Personal records of 50,000 Australian employees exposed in data breach

Personal records of 50,000 Australian employees exposed in data breach

THE personal details of almost 50,000 Australian employees have been compromised in what appears to be the country’s largest data breach since the Red Cross leaks.

IT News reports up to 48,270 personal records from employees working in government agencies, banks and a utility have been exposed online by a third-party contractor — a misconfigured Amazon S3 bucket. Amazon S3 is a form of cloud storage where employees can store and retrieve data from websites and mobile apps.

The files exposed include full names, passwords, IDs, phone numbers, and email addresses as well as some credit card numbers and details on staff salaries and expenses.

Insurer AMP was the worst impacted, with 25,000 staff records leaked as a result of the misconfiguration.

Utility UGL was affected to the tune of 17,000 records while 1500 pieces of employee data were recovered from Rabobank.

IT News also reported several thousand government employee details were also leaked, including 3000 at the Department of Finance, 1470 at the Australian Electoral Commission, and 300 at the National Disability Insurance Agency.

Personal details of almost 50,000 Aussie employees have been compromised. Picture: iStockSource:Supplied

The Department of Prime Minister and Cabinet — the parent agency for the Australian Cyber Security Centre — told IT News it had been alerted to the breach in early October.

“Once the Australian Cyber Security Centre (ACSC) became aware of the situation, they immediately contacted the external contractor and worked with them to secure the information and remove the vulnerability,” the spokesperson said.

“Now that the information has been secured, the ACSC and affected government agencies have been working with the external contractor to put in place effective response and support arrangements.”

In October last year, the medical information of more than half a million Australians have been compromised after being exposed by the Australian Red Cross Blood Service in Australia’s biggest data breach to date.

The records of more than half a million Australian Red Cross blood donors were exposed. Picture: SuppliedSource:Supplied

The service began contacting more than 550,000 Australian blood donors today whose information was published on an insecure website and accessed by unauthorised users.

The exposed database contained the names, contact details, birthdates, and medical details of Australian blood donors, including whether they had engaged in “at-risk sexual behaviour”.

The records did not contain all information donors share with the service, however.

The 1.74 gigabyte backup file was discovered by an anonymous source, who reported it to security expert Troy Hunt on Tuesday. It was removed the following day.

Mr Hunt said while the information came from the Red Cross, it was published by one of the Service’s partners in a way that was “egregiously bad”.

Online Source News.com.au.

technology

More in technology

10-year-old who looks like his mum hacks her iPhone’s Face ID

10-year-old who looks like his mum hacks her iPhone’s Face ID

The Indian TelegraphNovember 20, 2017
Four easy ways to make a little extra cash with your smartphone

Four easy ways to make a little extra cash with your smartphone

The Indian TelegraphNovember 16, 2017
iPhone X owners claim their gadget’s display doesn’t work properly in cold temperatures

iPhone X owners claim their gadget’s display doesn’t work properly in cold temperatures

The Indian TelegraphNovember 13, 2017
Snapchat counts a loss of over $50 million on spectacles

Snapchat counts a loss of over $50 million on spectacles

The Indian TelegraphNovember 8, 2017
Former Yahoo CEO Mayer, Equifax current and former CEOs to testify before US Senate for data breaches

Former Yahoo CEO Mayer, Equifax current and former CEOs to testify before US Senate for data breaches

The Indian TelegraphNovember 2, 2017
Apple sacks engineer over daughter’s iPhone X hands-on video

Apple sacks engineer over daughter’s iPhone X hands-on video

The Indian TelegraphOctober 31, 2017
Apple iPhone X pre-order warning: buy the smartphone now or you could wait until Christmas

Apple iPhone X pre-order warning: buy the smartphone now or you could wait until Christmas

The Indian TelegraphOctober 27, 2017
Google parent Alphabet leads $1 billion Lyft investment, deepening Uber rift

Google parent Alphabet leads $1 billion Lyft investment, deepening Uber rift

The Indian TelegraphOctober 20, 2017
Richard Branson joins Hyperloop One board, as it targets $200 million funding

Richard Branson joins Hyperloop One board, as it targets $200 million funding

The Indian TelegraphOctober 14, 2017
Apple investigates reports of iPhone 8 'splitting open'

Apple investigates reports of iPhone 8 ‘splitting open’

The Indian TelegraphOctober 3, 2017
Apple drops Bing search for Google

Apple drops Bing search for Google

The Indian TelegraphSeptember 27, 2017
Microsoft CEO Satya Nadella Once Surrendered His Green Card For Love

Microsoft CEO Satya Nadella Once Surrendered His Green Card For Love

The Indian TelegraphSeptember 26, 2017
Indian-Born Sriram Krishnan Joins Twitter As Senior Director

Indian-Born Sriram Krishnan Joins Twitter As Senior Director

The Indian TelegraphSeptember 20, 2017
iPhone fan camping outside Sydney’s Apple Store for 10 days to purchase new device

iPhone fan camping outside Sydney’s Apple Store for 10 days to purchase new device

The Indian TelegraphSeptember 12, 2017
Mark Zuckerberg

You can’t block Mark Zuckerberg or Priscilla Chan on Facebook. Here’s why

The Indian TelegraphSeptember 5, 2017
Apple iPhone 8 launch date set for September 12: Here are top five features to expect

Apple iPhone 8 launch date set for September 12: Here are top five features to expect

The Indian TelegraphSeptember 2, 2017
TCL teams up with Google for affordable smart TV that is really good value

TCL teams up with Google for affordable smart TV that is really good value

The Indian TelegraphAugust 29, 2017

Google will ask you if you’re depressed

The Indian TelegraphAugust 26, 2017

Android 8.0 Oreo announced: List of smartphones, devices which will get the OS

The Indian TelegraphAugust 23, 2017
Internet overuse may lead to neuropsychiatric dysfunctions’, new research says

Internet overuse may lead to neuropsychiatric dysfunctions’, new research says

The Indian TelegraphAugust 19, 2017
Google adds voice search for eight Indian languages: Here’s how it will work

Google adds voice search for eight Indian languages: Here’s how it will work

The Indian TelegraphAugust 14, 2017