Justin Hendry reports: A security breach of a cloud-based client management system used by National Disability Insurance Scheme (NDIS) service providers has exposed a “large volume” of health and other sensitive data. CTARS, a Sydney-based software and analytics provider for the disability and care sectors, this week revealed an unauthorised third-party had gained access to…
Author: Dissent
Data breach at Australian pension provider Spirit Super impacts 50k victims following phishing attack
Jessica Haworth reports: A phishing attack at Australian pension provider Spirit Super has resulted in “some personal details being compromised”. The ‘super fund’ confirmed that user data was breached on May 19, 2022 after an employee’s email account was accessed. An investigation into the incident found that there was “unauthorized access to a mailbox containing personal data”…
Today’s exercise in reading between the lines
A recent notification by Aon had DataBreaches wondering exactly what went on with their incident response. Consider their description of what happened: What Happened? On February 25, 2022, Aon identified a cyber incident that, upon investigation, impacted a limited number of systems. Once the incident was discovered, Aon immediately retained leading cybersecurity firms to assist…
Ransomware attack sends New Jersey county back to 1977
Brandon Vigliarolo reports: Somerset County, New Jersey, was hit by a ransomware attack this week that hobbled its ability to conduct business, and also cut off access to essential data. “Services that depend on access to county databases are temporarily unavailable, such as land records, vital statistics, and probate records. Title searches are possible only…
Calgary charity hit by data breach says it responded appropriately despite client concerns
Tomasia DaSilva reports: A Calgary charity has confirmed to Global News it was the victim of an email data breach last fall. Now, one of its former clients wants to know why it took so long to be alerted. The Calgary Urban Project Society (CUPS) sent an email to Michael Friesen on Wednesday to inform him…
Potential privacy breach after documents stolen from abandoned Auckland police station
Rachel Maher reports: Police have alerted the Privacy Commissioner after a burglar broke into the former Auckland police station and stole documents and expired pepper spray. The police were made aware of the break-in while carrying out a search warrant at a Mount Albert address where police property was found. The items found included documents…