In a statement posted to its website on Friday, five days after queries from this masthead, Amnesty said it had detected the attack on December 3, 2022. The charity said it subsequently secured its IT systems and started an investigation.

Latitude said the details were stolen from service providers it uses. The company did not clarify further, but this is believed to refer to companies that provide corporate services to Latitude.

The Australian Institute of Company Directors (AIDC) had some solid names lending support to the launch of the institute’s new set of “cybersecurity governance principles” but the event did not start on time due to the hacking incident.

Online wine seller Vinomofo has disclosed a major data breach in which an intruder accessed customers’ personal information including names, dates of birth, addresses, and contact details.

The personal details of almost 200,000 injured workers were mistakenly shared with 587 employers and insurance brokers in a major privacy data breach by embattled state insurer icare last month.

Avaddon, which originated in Russia, is behind the breach and is threatening to release a trove of sensitive information including images of passports, driver’s licenses, and employment contracts.

Passports, banking and Medicare details were potentially exposed in photocopied and scanned paper documents stored inside email accounts of 47 Service NSW employees, which were targeted in the attack.

The data breach is believed to include personal information relating to a small number of residents at Regis facilities and a staff member.

Foreign providers are responsible for most of the cybersecurity products and services in Australia, with no local companies among the 15 largest software providers in the local market.

Prime Minister Scott Morrison announced that the ASD will be given more than $1 billion over the next decade to disrupt foreign cybercriminals and better identify malicious hacks.