Northern Minerals Hit in Ransomware Attack

March 29, 2024

Australian mining company, Northern Minerals, fell victim to a cybersecurity breach back in March that led to data stolen appearing on a publishing site on the dark web, officials said Tuesday.
Northern Minerals mines and develops heavy rare earth elements like dysprosium and terbium. These materials end up used in electronics, batteries, and aircraft.
The miner revealed the threat actors stole data from its systems in late March and then published it on the dark web.

read more

Databreach at Telco Tangerine Impacts 230K Inidviduals

February 18, 2024

Tangerine suffered a data breach that exposed the personal information of roughly 230,000 individuals. Tangerine management became aware of the incident 2 days after the breach, on Tuesday 20 February 2024.

The telecommunications provider pointed out that no financial information (credit or debit card numbers, banking details) has been compromised. The attack did not affect the availability or operation of their nbn® or mobile services.

read more

Yakult Australia Confirmed Australian and New Zealand IT Systems Were Impacted

December 28, 2023

Iconic probiotic company Yakult Australia has been hit by a significant cyber attack that has seen its company records and sensitive employee documents, such as passports, published on the dark web.

The DragonForce group has claimed responsibility for the breach. A sample of the 95 gigabytes of data leaked, analysed by ABC Investigations, found company records dating back to 2001.

read more

Ransomware Attack at Black and White Taxi Service in Australia

February 1, 2023

A cyber attack on Black and White Cabs has shut down the company’s phone and online booking system. Suspicious activity was detected by staff and a “serious threat” to the company was determined in the afternoon. Black and White Cabs has confirmed that a CryptoLocker virus has infiltrated its network security, and it has reported the attack to the Australian Cyber Security Centre. The company was unable to computer dispatch bookings and took all booking portals down in the interest of protecting our passengers, drivers and staff. Drivers were still completing street work (hail & rank) and private bookings.

read more

US DoD Contracted Shipbuilding Company Austal USA Confirms Ransomware Attack

December 2, 2023

Austal USA confirmed that it suffered a cyberattack and is currently investigating the impact of the incident. a Austal USA is a shipbuilding company and a contractor for the U.S. Department of Defense (DoD) and Department of Homeland Security (DHS). Hunters International ransomware and data extortion group claimed to have breached Austal USA and leaked some information as proof of the intrusion. Austal USA did not share if the threat actor was able to access data about engineering schematics or other proprietary U.S. Navy technology.

Hunters International emerged recently as a ransomware-as-a-service (RaaS) operation. The group is believed to be a rebrand of the Hive ransomware gang, a theory based on overlaps in the malware code.

read more

Cyberattack and Potentional Data Breach at Nissan Oceania

December 5, 2023

Japanese automobile manufacturer Nissan announced that its Australia and New Zealand arm suffered a significant cyber security incident that affected the company’ daily operations. The company informed customers of its Nissan Oceania division of a potential data breach, warning them that there is a risk of scams in the upcoming days. The company did not share details about the attack or its scope. The problems suffered by the company suggest that its systems were infected with ransomware.

The carmaker warned that some dealer systems will be impacted despite local dealerships continue to operate.

read more

Hackers Exploits Critical Security Hole in Atlassian Software

October 31, 2023

Software company Atlassian is now saying that a recently disclosed issue is being exploited by hackers using the Cerber ransomware — a ransomware brand thought to be long-defunct. Atlassian CISO Bala Sathiamurthy warned the public on November 3 about the bug, which he said could lead to “significant data loss if exploited.” The company escalated this on November 6, 2023 following evidence of malicious activity, including ransomware attacks.”

The Cerber ransomware operation was active between 2016 and 2019. Several ransomware experts said they had not seen the Cerber ransomware used in years.

read more

40% of Australians Without Internet or Phone for One Day

November 7, 2023

An outage at No.2 Australian telco Optus left nearly half the population without internet or phone on Wednesday, throwing payment, transport and health systems into chaos and raising questions about the fragility of the country’s core infrastructure. The outage was first reported about 4 a.m. local time (1700 GMT on Tuesday) and it was not until almost 5.30 p.m. that Optus said services had been restored.

Some 10 million Australians, 40% of the population, are Optus customers and could not use smartphones, broadband internet or landlines for much of the day. Hospitals couldn’t take phone calls, small businesses were unable to process electronic payments and train networks and ride share services were down simultaneously in some cities. The incident sparked criticism about the robustness of Australia’s telecommunications network and in particular about Optus, which is owned by Singapore Telecommunications

read more

Cyberattack Crippled Facilities of Large Australia Port Operator

November 12, 2023

A cyber incident shut down Australia’s second largest port operator, which is now having an impact on moving goods in and out of the country. DP World Australia, which operates ports in Melbourne, Sydney, Brisbane and Fremantle, is responsible for 40 percent of maritime freight said it began responding to a cybersecurity incident this past Friday, according to an ABC News report. While ships remain able to unload freight, the freight cannot then leave the port site. The operator said it took immediate action which included disconnecting Internet connectivity, which stopped any ongoing unauthorized access.

Operations at container terminals in Melbourne, Sydney, Brisbane and Perth were disrupted from Friday to Monday morning. DP World Australia said its ports resumed operations at 09:00 local time “following successful tests of key systems overnight” – reports BBC.

There was no further word on what type of attack the port operator suffered and who was behind the assault.

read more

Employee Data of Rio Tinto Group Uploaded to Dark Web

March 23, 2023

Personal data of Rio Tinto Ltd’s former and current Australian employees were stolen by Cl0p. On April 6 the files were uploaded on the dark web. Ransom group Cl0p claims responsibility for the alleged data hack.

Rio Tinto confirmed that stolen employee data have been uploaded on the dark web, ABC News reported.

read more