RCR Tomlinson sat on staff data breach for three months | AFR

Australian Information Security Incident Reported: August 19 2018

Engineering group RCR Tomlinson took three months to notify the Office of the Australian Information Commissioner that employees’ personal data, including bank account numbers and credit cards, had been accessed in an internet scam despite new laws requiring companies to inform the regulator in “a timely manner.”

Source: RCR Tomlinson sat on staff data breach for three months

OAIC Breach Notification Form: https://www.oaic.gov.au/resources/about-us/access-our-information/foi-disclosure-log/notifications/foireq18-00114-documents.pdf

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.