A third-party contractor has exposed the personal information of around 50,000 Australian employees online.
This exposure of information was found by a Polish security researcher while searching for open Amazon S3 buckets. The information belongs to employees of Australian government agencies, banks and utilities.
Some of the companies involved and affected by this incident are working with the Australian Cyber Security Center (ACSC) to implement an effective response and support.
This incident appears to be the second largest data breach in Australia’s history after a partner of Red Cross Blood accidentally published 550,000 Australian blood donors’ information online.