iTnews

Fisheries Qld blames bad update for password 'fault'

By Ry Crozier on Jan 11, 2019 6:51PM
Fisheries Qld blames bad update for password 'fault'

Allowed fisherman to get into any account.

Fisheries Queensland has blamed a software bug introduced via an update for an incident that left users of its Fishnet Secure portal exposed over the break.

The Courier Mail first reported the incident on Wednesday this week, revealing that “fishermen attempting to log in discovered they could get in to any account on the supposedly protected portal without a password."

FishNet Secure allows holders of Queensland fishing permits, licences and quotas to manage them online.

A Fisheries Queensland spokesperson told iTnews late Friday that “a total of 23 clients recorded transactions during the fault period” over Christmas and the New Year.

“All have been contacted and no unauthorised transactions have been identified,” the spokesperson said.

The “fault was believed to have occurred after a recent enhancement to the application”, the spokesperson added.

“The application and change processes have been revised to ensure the secure password function is tested prior to the release of any future enhancements.

“Fisheries Queensland has asked the software developer for a log of access activities to identify persons who may have accessed accounts without permission or breached user terms and conditions.”

The agency said it had commissioned an independent audit to be conducted by PwC “to review any anomalous activities within FishNet Secure during the fault period.”

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © iTnews.com.au . All rights reserved.
Tags:
fisheries queensland fishnet secure password portal security

Partner Content

Why companies fail at picking cloud modernisation partners
Promoted Content Why companies fail at picking cloud modernisation partners
Improving returns from SD-WAN spending
Partner Content Improving returns from SD-WAN spending
Putting cyber security basics in place
Partner Content Putting cyber security basics in place
Setting a path to self-funded mainframe-to-cloud modernisation with Micro Focus
Promoted Content Setting a path to self-funded mainframe-to-cloud modernisation with Micro Focus

Sponsored Whitepapers

The top 5 tech trends to deliver business outcomes
The top 5 tech trends to deliver business outcomes
10 reasons why businesses need to invest in cloud security training
10 reasons why businesses need to invest in cloud security training
Your guide to application security solutions
Your guide to application security solutions
State of Software Security: Open Source Edition
State of Software Security: Open Source Edition
Five questions to ask before you upgrade to a SIEM solution
Five questions to ask before you upgrade to a SIEM solution

Events

  • On-Demand Webinar: How Poly and Microsoft are Embracing Future Work Environments
  • [iTnews and Micro Focus] Navigating the cloud modernisation minefield
By Ry Crozier
Jan 11 2019
6:51PM
0 Comments

Related Articles

  • Australian govt entity hit by brute-force attack
  • Shipbuilder Austal was hacked with stolen creds sold on dark web
  • 86 400 looks to strengthen customer sign-up process
  • Britain's GCHQ cyber spies embrace the AI revolution
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

TPG Telecom to start enticing NBN customers to move

TPG Telecom to start enticing NBN customers to move

Infosys scores another $40m for Centrelink payments engine build

Infosys scores another $40m for Centrelink payments engine build

Bosch, Microsoft join forces to develop vehicle software platform

Bosch, Microsoft join forces to develop vehicle software platform

Telstra InfraCo opens up telco's own fibre network

Telstra InfraCo opens up telco's own fibre network

You must be a registered member of iTnews to post a comment.
Log In | Register
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.