Story image

Tasmanian elector data breached via forms on Electoral Commission site

03 Jul 2018

Last week, the Tasmanian Electoral Commission was informed by Barcelona-based company Typeform that an unknown third party had gained access to one of their servers and downloaded certain information. 

Typeform online forms have been used on the TEC website since 2015 for some of its election services. The breach involved an unknown attacker downloading a backup file. 

The breach was identified by the company on June 27, 2018, with the vulnerability closed down within half an hour of detection.  

Typeform’s full investigation of the breach identified that data collected through 5 forms on the TEC website had been stolen.  Whilst some of the stolen elector data captured in some of these forms has already been made public, such as candidate statements for a local government by-election, it is believed that the breach also captured name, address, email and date of birth information provided by electors when applying for an express vote at the recent State and Legislative Council elections. The Electoral Commission will be contacting electors that used these services in the coming days to inform them of the breach. The Electoral Commission apologised for the breach and promised to re-evaluate its collection procedures and internal security elements around its storage of electoral information for future events. The breach has no connection to the national or state electoral roll.

Two weeks ago, a breach of online recruitment services organisation PageUp left personal data from the staff at the Australia Attorney-General’s Office exposed.

Malware was found on the company systems used to store private data, including banking details and personally identifying details.

Other employers that were using PageUp’s human resources software included Telstra, Medibank, Australia Post, and more. 

In a statement, PageUp says that while sensitive data was accessed, it “has advised that no employment contracts, applicant resumes, Australian tax file numbers, credit card information or bank account information were affected.”

“In other words, no Australian information may actually have been stolen.”

Kinetica launches a new active analytics platform
"With the platform now powered by NVIDIA DGX-2, customers can build smart analytical applications that combine historical data analytics and ML-powered analytics."
Avi Networks: Using visibility to build trust
Visibility, also referred to as observability, is a core tenet of modern application architectures for basic operation, not just for security.
Zoom’s new Rooms and Meetings features
Zoom has released information about the upcoming releases for its Rooms and Meeting offerings for 2019.
Aussie company set to democratise direct-to-orbit IoT access
Adelaide-based Myriota has released a developer toolkit that has been trialled and tested by a smart waste management platform.
Dynatrace takes pole position in APM Magic Quadrant
It placed highest on Ability to Execute and furthest on Completeness of Vision in the 2019 Quadrant for Application Performance Monitoring (APM).
HCL and Xerox expand strategic partnership
Under the terms of the agreement, HCL will manage portions of Xerox’s shared services, including global administrative and support functions.
Inspur announces AI edge computing server with NVIDIA GPUs
“The dynamic nature and rapid expansion of AI workloads require an adaptive and optimised set of hardware, software and services for developers to utilise as they build their own solutions."
Avaya expands integration with Google Cloud AI
This includes embedding Google’s machine learning within conversation services for the contact centre, enabling integration of AI capabilities.