https://www.westernsydney.edu.au/about_uws/leadership/governance/privacy_at_western_sydney_university/privacy_breaches_and_complaints
https://www.itnews.com.au/news/western-sydney-unis-it-systems-compromised-again-612757
Western Sydney University has disclosed a significant data breach that occurred between August 14th and 31st, 2024. An unauthorized actor gained access to the university’s systems, including the core student management system and data warehouse, by exploiting compromised IT credentials.
The compromised data includes sensitive personal information such as names, addresses, email addresses, student identification numbers, tuition fees, enrollment details, and demographic information. The university has confirmed that there is no evidence of data alteration or threats related to the breach.
To address the security breach, the university is implementing enhanced security measures, including 24/7 monitoring, additional firewall protection, and increased cybersecurity team capacity. They are also advising students and staff to be vigilant and report any suspicious activity.
The university is actively investigating the incident and may identify further data that was accessed during the breach.