Service NSW has suffered a breach which exposes personal data of thousands of its customers. Personal information such as driver’s licenses, vehicle registration details, contact information and children’s name may have been exposed to other logged in users during the privacy incident which occurred on March 20th. The breach was not due to a cyber-attack. It was instead caused by a bug in their updated released of their “My Services” dashboard. The update was made at around 1:20pm and the page was taken down at 3pm once the issue was discovered. About 3,700 customers may have been impacted during that 94 minute exposure window. Service NSW said that it is investigating the scope of the incident and the Information and Privacy Commission and affected customers have been notified.
This segment was created for the It’s 5:05 podcast