Banks, governmental organisations, universities, and many other significant corporations have been informed by Ricoh's Australia office about an odd data breach that, in certain cases, exposed login information for its multifunction devices.
The most private records that have been made public are those from Commonwealth Bank.
They contain SMTP credentials for Ricoh's MP C6503 and MP 8003 machines, which are used by the banks, as well as two sets of administrator credentials, one "supervisor" account, and two sets of SMTP credentials.
Since then, Ricoh has removed the documents' storage domain from the internet.
Source: https://www.govinfosecurity.com/ricoh-australia-scrambles-to-fix-document-leak-a-10123
TPRM report: https://scoringcyber.rankiteo.com/company/ricoh-australia
"id": "ric175241022",
"linkid": "ricoh-australia",
"type": "Breach",
"date": "07/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Financial Services',
'name': 'Commonwealth Bank',
'type': 'Bank'}],
'data_breach': {'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Login information',
'SMTP credentials',
'Administrator credentials',
'Supervisor account '
'information']},
'description': "Ricoh's Australia office informed various significant "
'organizations about a data breach that exposed login '
'information for its multifunction devices. The most sensitive '
'records exposed were from Commonwealth Bank, including SMTP '
"credentials for Ricoh's MP C6503 and MP 8003 machines, "
'administrator credentials, and supervisor account '
'information.',
'impact': {'data_compromised': ['Login information',
'SMTP credentials',
'Administrator credentials',
'Supervisor account information'],
'systems_affected': ['Ricoh MP C6503', 'Ricoh MP 8003']},
'response': {'remediation_measures': "Removed the documents' storage domain "
'from the internet'},
'title': 'Ricoh Australia Data Breach',
'type': 'Data Breach'}