For more than one year, employee data of approximately 8,500 Department of Social Services employees was exposed online due to an error by contractor Business Information Services. Paul Karp reports that the compromised data included:
credit card information, employees’ names, user names, work phone numbers, work emails, system passwords, Australian government services number, public service classification and organisation unit.
Read more on The Guardian.