Reserve Bank urgently responding to 'illegal breach of data system'

Please note this sub-forum does not provide professional finance advice. You should seek advice from a licensed financial advisor.

To post in this sub-forum you must have made 100 posts or have Trust status or have completed our ID Verification.

If investing please consider our affiliate link for new accounts: Sharesies.

Forums › Finance and wealth management › Reserve Bank urgently responding to 'illegal breach of data system'

JaseNZ

2576 posts

Uber Geek

ID Verified

Lifetime subscriber

#280781 10-Jan-2021 17:13

Pretty serious stuff.

https://www.stuff.co.nz/business/123909468/reserve-bank-urgently-responding-to-illegal-breach-of-data-system

Ding Ding Ding Ding Ding : Ice cream man , Ice cream man

1 | 2

2576 posts

Uber Geek

ID Verified

Lifetime subscriber

#2633135 10-Jan-2021 17:16

The bank issued a statement shortly after 2pm on Sunday saying a “third party file sharing service” used by the bank to share and store some sensitive information, had been illegally accessed.

Bugger they need to stop using torrents. 😁

Ding Ding Ding Ding Ding : Ice cream man , Ice cream man

mgeek

122 posts

Master Geek

#2633143 10-Jan-2021 17:38

I'm impressed they managed to avoid saying 'hacked' throughout the entire article, and went with the (typically far more accurate) 'illegally accessed'.

They'll have to stop using money123 as their password now...

Jiriteach

1119 posts

Uber Geek

ID Verified

Lifetime subscriber

#2633189 10-Jan-2021 18:04

“third party file sharing service” - wonder how many others are affected as well as which third party file sharing service!

-- opinions expressed by me are solely my own. ie - personal

Andib

1363 posts

Uber Geek

ID Verified

Trusted

#2633195 10-Jan-2021 18:26

mgeek:
I'm impressed they managed to avoid saying 'hacked' throughout the entire article, and went with the (typically far more accurate) 'illegally accessed'.

They'll have to stop using money123 as their password now...

Yep without knowing more & the fact that 'hack' hasn't been mentioned sounds like someone got phished

<#
.DISCLAIMER
Anything I post is my own and not the views of my past/present/future employer.
#>

Geektastic

17943 posts

Uber Geek

Trusted

Lifetime subscriber

#2633222 10-Jan-2021 19:10

Jiriteach: “third party file sharing service” - wonder how many others are affected as well as which third party file sharing service!

Is it Mega? A discount from KDC?

JaseNZ

2576 posts

Uber Geek

ID Verified

Lifetime subscriber

#2633224 10-Jan-2021 19:19

Either way this is a pretty serious hack and I am sure more will come out over the next few days.

As for KDC is he even still around and whats he up to ??

Ding Ding Ding Ding Ding : Ice cream man , Ice cream man

SomeoneSomewhere

1802 posts

Uber Geek

Lifetime subscriber

#2633229 10-Jan-2021 19:24

Andib:
mgeek:

I'm impressed they managed to avoid saying 'hacked' throughout the entire article, and went with the (typically far more accurate) 'illegally accessed'.

They'll have to stop using money123 as their password now...

Yep without knowing more it, the fact that 'hacks hasn't been mentioned sounds like someone got phished

Or the old 'whoops, forgot the access controls on the AWS bucket' - though that generally wouldn't be illegal.

Equinox IT

Cloud spending continues to surge globally, but most organisations haven’t made the changes necessary to maximise the value and cost-efficiency benefits of their cloud investments. Download the whitepaper From Overspend to Advantage now.

neb

11294 posts

Uber Geek

Trusted

Lifetime subscriber

#2633247 10-Jan-2021 20:07

SomeoneSomewhere:
Or the old 'whoops, forgot the access controls on the AWS bucket' -

"I know! We'll solve that problem by putting it in the cloud!".

Looking at the story, it's not clear how serious it really was, "may include some commercially and personally sensitive information" doesn't sound like too much, possibly financial reports shared out to companies or something.

neb

11294 posts

Uber Geek

Trusted

Lifetime subscriber

#2633261 10-Jan-2021 20:44

Stu1:
Hopefully it’s not AML information often requested from banks which is uploaded to the RBNZ, this data often includes personal customer information and data

Ouch! Hadn't considered it could have been data flowing the other way, if it's AML data that would be serious.

(For the rest of the class, AML is anti money-laundering data, so records of transactions over a certain amount, the leaking of which could make you a target for crooks).

mattwnz

20142 posts

Uber Geek

#2633304 10-Jan-2021 23:49

Cloud file sharing services are common and widely used. There is a lack of information about what this means or the seriousness of it. I hope more information about it is released to the public.