A cyberattack on Sydney based finance technology company YouX, a hacker has made public what they say is financial and personal data connected to hundreds of thousands of Australians.
Lenders and finance brokers use YouX’s platform to create and handle loan applications
The business reported this week that it discovered “unauthorized access” to its systems, stated that it was conducting an investigation with outside experts.
According to the attacker, records pertaining to 629,597 loan applications, 444,538 personal details and 229,236 driver’s licenses are among the information that was leaked.
More than 607,000 residential addresses are also included. Additionally, the hacker claimed to have data linked to dozens of lenders and 797 broker organizations.
This claimed to have updated the Office of the Australian Information Commissioner and promised to notify the appropriate authorities and get in touch with those who would be impacted.
Businesses that use the platform have also responded to the incident.
MotorCycle Holdings Limited informed the market that it had learned of illegal access to youX’s system that helps some clients set up financing by using the platform as a third party tool.
It stated that, as a precaution it was getting in touch with pertinent clients, the use of the youX platform has been suspended, it added.
It claimed not to have discovered any unauthorized access to its own internal systems.
When a breach is likely to cause significant harm, organizations covered by the Privacy Act are required by Australia’s notifiable data breach regulations to notify the regulator and the affected individuals.
