DFAT

Dfat inadvertently revealed the email addresses of almost 3,000 vulnerable Australians stranded overseas in a data breach.

The addresses were included in an email sent to multiple recipients before midday by the Covid-19 consular operations section of Dfat.

The addressees were mistakenly listed in the ‘to’ field, rather than ‘bcc’, making them visible to other recipients.

No other personal information of any recipient was disclosed.

Source: https://www.theguardian.com/australia-news/2020/sep/30/data-breach-dfat-reveals-email-addresses-of-vulnerable-australians-stranded-overseas

"id": "DFA222219123",
"linkid": "dfat",
"type": "Data Leak",
"date": "09/2020",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"