Australian Health Insurer Hacked, 28 October 2023
14,011 members may have been impacted by a cyber security incident involving a former third-party service provider.
Company Statement: Important information – third‑party provider cyber security incident
Source: The Super SA data hack impacted thousands but took two months to come to light. Here’s what we know | ABC News (Australia)
– Treasurer calls for government agencies to improve cyber security after Super SA breach | ABC News (Australia)
View more incidents from Banking and Finance sector and incidents from South Australia.
The South Australian government says data belonging to a significant number of people has potentially been accessed through a cyber security breach.
The third-party provider was a call centre that had been contracted by Super SA to field inquiries from members affected by a separate 2019 breach. None of the data held by the third-party provider contains information post 2020.
SA Treasurer Stephen Mullighan told parliament on Wednesday that hackers stole data from a call centre previously contracted by Super SA — a dedicated superannuation fund for state government employees.
He said the security breach happened nearly two months ago, but he was only informed of the incident late last week.
To help respond to members caught up in the incident, Super SA hired the services of a call centre — Adelaide-based company Contact 121 — in 2020.
After its contract with Super SA ended, the government said, Contact 121 kept data about the members and about two months ago that information was accessed.
The government said Super SA became aware of the latest cyber security incident on September 1 this year, but it didn’t receive confirmation that a breach had occurred until October 4.
It said all members who were implicated in the 2019 cyber breach were also impacted by this latest attack.
“It’s simply not good enough,” he said.
Related
