News: 1727742366

  ARM Give a man a fire and he's warm for a day, but set fire to him and he's warm for the rest of his life (Terry Pratchett, Jingo)

Australian e-tailer digiDirect customers' info allegedly stolen and dumped online

(2024/10/01)


Data allegedly belonging to more than 304,000 customers of Australian camera and tech e-tailer digiDirect has been leaked to an online cyber crime forum.

digiDirect, a prominent Australian consumer electronics retailers, did not immediately respond to The Register 's inquiries. We will update this story if and when we hear back.

According to a BreachForums [1]post , a crook who goes by “Tanaka” allegedly swiped a database containing customers' full names, email addresses, phone numbers, billing and shipping addresses, and company names.

[2]

The criminal also posted a sample of the stolen data – which has not been verified by The Register - and issued an apparent shoutout to another cyber crook – "very thanks to [3]Chucky " – who may or may not have also been involved in the digital break-in, if it indeed happened.

[4]Coding error in forgotten API blamed for massive data breach

[5]Miscreants claim they've snatched 560M people's info from Ticketmaster

[6]Aussie cops probe MediSecure's 'large-scale ransomware data breach'

[7]A million Australian pubgoers wake up to find personal info listed on leak site

There has been no word yet from digiDirect, nor from the Office of the Australian Information Commissioner or the Oz Federal Police as to whether they have received a breach report from the electronics shop, or if they are investigating. The Register has asked both government agencies for comment.

Still, anyone who has recently purchased electronics from the shop would be wise to keep an eye on their digital identity and bank accounts to ensure that fraudsters aren't using personal and financial information for shopping sprees or other nefarious purposes.

[8]

In 2021, digiDirect was [9]fined AU$39,240 ($27,100) by the Australian Competition and Consumer Commission for allegedly misleading consumers about "storewide" sales, which the consumer protection watchdog claimed weren't really storewide at all.

The breach, if the report turns out to be true, follows a rough several months for Australians. Their sensitive info has been stolen – and then posted online – from [10]Ticketmaster , prescriptions provider [11]MediSecure , and [12]Nissan Oceania , among others.

[13]

Crikey. ®

Get our [14]Tech Resources



[1] https://x.com/DailyDarkWeb/status/1840708419587895609

[2] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2Zvtz5bZfUXy_PKqz21H0DgAAAIU&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0

[3] https://dailydarkweb.net/tag/chucky/

[4] https://www.theregister.com/2024/06/21/optus_data_breach_faulty_api/

[5] https://www.theregister.com/2024/05/29/breachforums_ticketmaster_data/

[6] https://www.theregister.com/2024/05/17/medisecure_ransomware_attack/

[7] https://www.theregister.com/2024/05/02/australian_pubs_data_breach/

[8] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44Zvtz5bZfUXy_PKqz21H0DgAAAIU&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0

[9] https://www.accc.gov.au/media-release/digidirect-pays-penalties-for-misleading-consumers-about-storewide-sales

[10] https://www.theregister.com/2024/05/29/breachforums_ticketmaster_data/

[11] https://www.theregister.com/2024/05/17/medisecure_ransomware_attack/

[12] https://www.theregister.com/2024/03/14/nissan_oceania_100k_affected/

[13] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44Zvtz5bZfUXy_PKqz21H0DgAAAIU&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0

[14] https://whitepapers.theregister.com/



Why won't sharks eat lawyers? Professional courtesy.