iTnews
  • Home
  • News
  • Technology
  • Security

Hacker steals thousands of student records from WA TAFE

By Allie Coyne on Sep 6, 2017 3:51PM
Hacker steals thousands of student records from WA TAFE

Remote access exploited.

An attacker has infiltrated the systems of a West Australian TAFE and accessed the sensitive personal details of more than 13,000 students.

The unknown attacker gained unauthorised remote access to North Metropolitan TAFE's IT system on August 28 and September 5, WA Education minister Sue Ellery told parliament yesterday.

The hacker accessed details on an unknown number of staff and 13,782 students that included names and addresses as well as "some" encrypted passwords and IP addresses, she said.

However Ellery said there were no current password and log-in credentials accessed in the breach. Similarly there was "no evidence" that the attacker had managed to access student banking or financial information.

"As soon as this was discovered, immediate action was taken to shut down the system and to identify sources of the breaches," she said.

Ellery said it appeared while the hacker had been able to view the information, they did not appear to have exported it.

"I'm told it does appear to be a fairly unsophisticated effort, but nonetheless we need to be vigilant against this," she said.

The state's four other TAFE colleges had run scans of their networks to check for unauthorised access following the breach and had reported no issues, Ellery said.

WA Police is investigating the hack and the government has initiated an internal review.

The state government has long been criticised by WA auditor-general Colin Murphy for its weak security controls.

In June this year Murphy said he was fed up with repeatedly reporting the "same common weaknesses" that could be “easily addressed” at little cost.

His most recent review found easily-guessable passwords, unpatched systems, and unencrypted data stored on tape back-ups across the public service.

That same month the state government offered up a brief digital security policy [pdf] that it is in the process of implementing across whole-of-government.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © iTnews.com.au . All rights reserved.
Tags:
breachhacknorth metropolitan tafesecuritytafe

Partner Content

How to turn digital complexity into competitive advantage
Promoted Content How to turn digital complexity into competitive advantage
Why Genworth Australia embraced low-code software development
Promoted Content Why Genworth Australia embraced low-code software development
Avoiding CAPEX by making on-premise IT more cloud-like
Promoted Content Avoiding CAPEX by making on-premise IT more cloud-like
Security "mindset shift" needed to protect organisations
Promoted Content Security "mindset shift" needed to protect organisations

Sponsored Whitepapers

Free eBook: Digital Transformation 101 – for banks
Free eBook: Digital Transformation 101 – for banks
Why financial services need to tackle their Middle Office
Why financial services need to tackle their Middle Office
Learn: The latest way to transfer files between customers
Learn: The latest way to transfer files between customers
Extracting the value of data using Unified Observability
Extracting the value of data using Unified Observability
Planning before the breach: You can’t protect what you can’t see
Planning before the breach: You can’t protect what you can’t see

Events

  • Forrester Technology & Innovation Asia Pacific 2022
By Allie Coyne
Sep 6 2017
3:51PM
0 Comments

Related Articles

  • 'Back from vacation' - Lapsus$ hackers claim breach of Globant
  • T-Mobile says hackers stole about 7.8m postpaid customers' personal data
  • Twitter says zero-day bug leaked account data
  • Hackers target European Central Bank president
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Australian court finds insurer not liable for ransomware clean-up costs

Australian court finds insurer not liable for ransomware clean-up costs

NSW Police dumps Bezos-backed Mark43 from core systems overhaul

NSW Police dumps Bezos-backed Mark43 from core systems overhaul

Telstra deregisters 900MHz sites “hindering” Optus 5G rollout

Telstra deregisters 900MHz sites “hindering” Optus 5G rollout

ADHA extends Accenture's My Health Record support deal for $100m

ADHA extends Accenture's My Health Record support deal for $100m

Digital Nation

Criteo to fork out $94.7m for consent breaches
Criteo to fork out $94.7m for consent breaches
Metaverses on the agenda for Dominello, Husic ministerial meeting
Metaverses on the agenda for Dominello, Husic ministerial meeting
Domino’s invests in observability for zero contact delivery
Domino’s invests in observability for zero contact delivery
Australia will lose 11 percent of jobs to automation by 2040: Forrester
Australia will lose 11 percent of jobs to automation by 2040: Forrester
COVER STORY: How KPMG, Mirvac and ASX use blockchain to build trust in the property sector
COVER STORY: How KPMG, Mirvac and ASX use blockchain to build trust in the property sector
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.