verified2021-01-20

OxfamOxfam breach

oxfam.org.au · 1,834,006 records compromised

Records
1.83M
Breach date
2021-01-20
Domain
oxfam.org.au
Data classes
9

Description

In January 2021, Oxfam Australia was the victim of a data breach which exposed 1.8M unique email addresses of supporters of the charity. The data was put up for sale on a popular hacking forum and also included names, phone numbers, addresses, genders and dates of birth. A small number of people also had partial credit card data exposed (the first 6 and last 3 digits of the card, plus card type and expiry) and in some cases the bank name, account number and BSB were also exposed. The data was subsequently made freely available on the hacking forum later the following month.

Compromised data classes· 9

Bank account numbersDates of birthEmail addressesGendersNamesPartial credit card dataPayment historiesPhone numbersPhysical addresses

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Breach
Dymocks
Breach
Experian (South Africa)
Breach
digiDirect
Breach
Ducks Unlimited
Breach
Facebook
Breach
Doxbin
Sourced from Have I Been Pwned. Aggregate metadata only — no PII. Curated by Adam Lundqvist, Founder at SQUR.