A regional Victorian real estate agency has fallen victim to a data breach.
PH Property Bendigo sent an email to clients yesterday afternoon saying a staff member’s email address was hacked on March 15.
The hackers managed to get past security protocols by the company that include randomised passwords, 2-Factor Authentication for all email accounts, and an in-house internet firewall security system.
The company said four months of data was stolen which could affect about 200 customers.
Data stolen may have included names, contact information, bank details and documentation confirming identity.
The company said the cybercriminals were now targeting some clients of the small business using an email address with the first name Kayla*.
“Our current information shows that they have only emailed clients so far, however, there is a possibility that they have made a local copy of Kayla’s entire email account and will have access to any email that has been sent to or from her.”
The real estate agency said it has wiped the workers’ computer, reported the data breach to the Office of the Australian Information Commissioner, and hired IT experts to help.
p class=”_39n3n” style=”margin-bottom: 1rem;color: #000000;font-family: abcsans, -apple-system, BlinkMacSystemFont, ‘Segoe UI’, Roboto, ‘Helvetica Neue’, Arial, sans-serif”>Anyone who is a client of the agency is being urged to review their bank statements for any unusual activity and change any password associated with company accounts.