Hackers access personal details of Oxfam Australia charity supporters
Hackers have gained access to an Aussie organisation’s database containing names, phone numbers and in some cases, bank details of its supporters.
Supporters of an Australian charity have had personal details including their names, phone numbers, emails and dates of birth stolen by hackers.
Oxfam Australia announced on Monday that the personal information of it supporters had leaked after one of its databases was accessed by hackers on January 20.
While an independent forensic investigation found no passwords were compromised, the database included information about supporters who may have signed a petition, taken part in a campaign or made donations or purchases, the aid agency said.
Names, addresses dates of birth, emails, phone numbers, gender and in some cases, donation history were exposed.
The organisation says a “small group” of supporters may have had their bank name, account number and BSB accessed, or part of their credit and debit card details accessed and it’s contacting these supporters directly.
Chief Executive Lyn Morgain said the organisation regretted the incident had occurred.
“We contacted all our supporters early last month to alert them to a suspected incident, which has now been confirmed,” she said.
Oxfam has warned people they may be at risk of receiving scam communications via unsolicited emails, phone calls or text messages.
“We recommend people remain vigilant and refrain from actioning unsolicited requests to provide information, including actioning links and opening attachments,” the organisation said in a statement.
“Scammers can seem quite believable and impersonate government, police and business, including making their telephone numbers and email addresses look legitimate.
“If in doubt, people are encouraged to make their own inquiries via official and publicly reported communication channels.”
Oxfam Australia said it was alerted to a suspected data incident on January 27 and hired forensic IT experts to investigate.
Supporters were alerted of the potential risk on February 4 and the aid agency said it has started notifying them about steps to take to protect their information.
The organisation said it’s working with industry regulators, including the Office of the Australian Information Commissioner and Australian Cyber Security Centre.
Ms Morgain said the privacy and protection of its supporters has been paramount.
“Oxfam supporters are at the heart of our organisation and their confidence is critical to our ongoing work in tackling the inequality that causes poverty around the world,” she said.
Anyone who believes they may have experienced scam activity related to this event should contact 1800 088 110.