Deakin University reports:
On Sunday 10 July, Deakin University became aware of an incident in which a staff member’s username and password was hacked and used by an unauthorised person to access information held by a third-party provider.
This third-party has been engaged by Deakin to forward messages prepared by the University to students via SMS. The information accessed by the unauthorised person was then used to send an SMS, as if from Deakin, to 9,997 Deakin students….
Read more at Deakin University.
Updated July 13: The incident potentially impacted 47,000 current and former students along with the ‘smishing’ attempt that compromised a legitimate communications channel to target 10,000 current students.