Oxfam

OA Org company

oxfam.org.au

Breaches

1 verified

Records Exposed

1.8M

Total across all breaches

Data Types Leaked

1 high risk

Latest Breach

2021

Oxfam

Breach History

Oxfam

Jan 2021High

1.8M

Records exposed

Data types leaked

Verified

Status

In January 2021, Oxfam Australia was the victim of a data breach which exposed 1.8M unique email addresses of supporters of the charity. The data was put up for sale on a popular hacking forum and also included names, phone numbers, addresses, genders and dates of birth. A small number of people also had partial credit card data exposed (the first 6 and last 3 digits of the card, plus card type and expiry) and in some cases the bank name, account number and BSB were also exposed. The data was subsequently made freely available on the hacking forum later the following month.

Exposed Data Types

Bank account numbersDates of birthEmail addressesGendersNamesPartial credit card dataPayment historiesPhone numbersPhysical addresses

Incident Status

Data breachYes

Data brokerNo

Policy contradictionsNo

Exposed Data Types

Bank account numbersHigh risk

Dates of birthMedium risk

Email addressesLow risk

GendersLow risk

NamesLow risk

Partial credit card dataLow risk

Payment historiesLow risk

Phone numbersMedium risk

Physical addressesMedium risk