Just 13 – No, Er, Make That 3,200 Punters Hit In Oz's Perth Mint Hack (Sep 18, 2018)
A security breach at the Australian government’s official mint “Perth Mint” that was initially believed to have only affected 13 customers, has ended up actually affecting over 3,200 customers. The cyber incident appears to have been caused by security failings of a third-party provider, and the company’s internal systems were not compromised. The company contacted affected customers to notify them of the breach and that their personal information was breached, but their investments were not impacted and are secure.
Recommendation: Leaks of this sort causes individuals to be at a large risk of phishing attacks. Actors can use this information to coerce more personal data from the victim. Users should also monitor their credit in order to make sure that nothing out of the ordinary is happening and no identity fraud is being committed. Third-party software vendors must ensure that their software is secure frequently to avoid customers falling victim to cyber threats due to their own vulnerabilities. Any security updates to software must be immediately shared with all customers and subsequently applied immediately.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.