LEFT SIDEBAR AD

Hidden in mobile, Best for skyscrapers.

NSW Health confirms data breached due to Accellion vulnerability

2 years ago 161
BOOK THIS SPACE FOR AD
ARTICLE AD

New South Wales Health has confirmed being impacted by a cyber attack involving the file transfer system owned by Accellion.  

The system was widely used to share and store files by organisations around the world, including NSW Health, the government entity said on Friday afternoon.

"Following the NSW government's advice earlier this year around a world-wide cyber attack that included NSW government agencies, NSW Health is notifying people whose data may have been accessed in the global Accellion cyber attack," it said in a statement.

The state entity said medical records in public hospitals were not affected and the software involved is no longer in use by NSW Health.

"Different types of information, including identity information and in some cases, health-related personal information, were included in the attack," it added.

NSW Health said it has been working with NSW Police and Cyber Security NSW and that to date, there is no evidence any of the information has been misused.

See also: How NSW Health used tech to respond to COVID-19

"A cyber incident help line has been set up to provide further information and support to those people NSW Health is contacting," it said. "If you are contacted by NSW Health, you will be given the cyber incident help line details; if you are not contacted by NSW Health, no action is required."

The NSW Police Force and Cyber Security NSW have set up Strike Force Martine to determine the impact on NSW government agencies that were caught up in the attack on Accellion.

Accellion's file-sharing program, File Transfer Appliance, is an enterprise product used to transfer large files. While now discontinued and supplanted by other software such as Kiteworks, a zero-day vulnerability in the legacy software was found in December and has since been exploited by attackers in the wild. 

It is estimated that some 100 organisations around the world were among those affected by the breach.

Transport for NSW in February confirmed being caught up in the breach.

The Australian Securities and Investments Commission (ASIC) in January said one of its servers was breached earlier in the month in relation to Accellion software used by the agency to transfer files and attachments.

Accellion was also used as the vector to breach the Reserve Bank of New Zealand (RBNZ) in January.

HERE'S MORE

NSW cyber strategy demands government lead by exampleNSW readies its own data breach notification scheme for state agenciesTransport for NSW confirms data taken in Accellion breachNSW government sets up cyber and privacy resilience group to keep customer data safeNSW pledges AU$60m to create cyber 'army'Service NSW expecting cyber attack to set it back AU$7m in legal and investigation costs
Read Entire Article
  3. NSW Health confirms data breached due to Accellion vulnerability

Related

Google patches another zero-day exploit in Chrome - and this one affects Edge too

Google patches another zero-day exploit in Chrome - and this one affects Edge too

Google unveils new Android 15 security updates: What you need to know

Google unveils new Android 15 security updates: What you need to know

Hacker claims to have stolen Dell customer data - here's how to protect yourself

Hacker claims to have stolen Dell customer data - here's how to protect yourself

Meet Hackbat: An open-source, more powerful Flipper Zero alternative

Meet Hackbat: An open-source, more powerful Flipper Zero alternative

iOS and Android owners will now be alerted if an unknown tracker is moving with them

iOS and Android owners will now be alerted if an unknown tracker is moving with them

Update your Chrome browser ASAP. Google has confirmed a zero-day exploited in the wild

Update your Chrome browser ASAP. Google has confirmed a zero-day exploited in the wild

Trending

1. Mi vs LSG
2. Vineet Nayyar Tech Mahindra
3. Bandhan Bank Share
4. Furiosa
5. Moto Edge 50 Fusion
6. Motorola Edge 50 Fusion
7. New Caledonia France
8. Guruvayoor Ambalanadayil
9. Sunil Chhetri
10. Neeraj Chopra

Popular

1-click RCE in Electron Applications

1-click RCE in Electron Applications

Install waybackurls on Kali Linux

Install waybackurls on Kali Linux

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Install DalFox on Kali Linux

Install DalFox on Kali Linux

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

SketchUp Pro 2020 v20.2.172 (x64) Multilingual + Patch

SketchUp Pro 2020 v20.2.172 (x64) Multilingual + Patch

BOOK THIS SPACE FOR AD
RIGHT SIDEBAR BOTTOM AD
Bengali (Bangladesh) Bengali (Bangladesh) · English (United States) English (United States) ·
About Us · Terms & Condition · Contact Us
© Security Alert 2024. All rights are reserved