Nearly 330,000 customer records and identification documents have been stolen from a major Australian financial firm.
Latitude Financial said on Thursday that it appeared to have been targeted by a sophisticated and malicious cyberattack, originating from a major vendor.
Latitude, which offers loans, credit cards and insurance, said more than 100,000 copies of customer identification had been stolen, about 97 percent of which were copies of driver’s licenses. Another 225,000 customer records were also stolen.
In a statement to ASX on Thursday, Latitude said a “major vendor” was the target of the attack.
The company offers interest-free installment plans and personal loans for shoppers at big box retailers like Harvey Norman, JB Hi-Fi, The Good Guys, and David Jones. It did not name the affected vendor.
“The attacker was able to obtain the login credentials of Latitude employees before the incident was isolated,” Latitude said.
“The attacker appears to have used employee login credentials to steal personal information that was held by two other service providers.
The company apologized and said it was reaching out to affected customers. It was also working with authorities, including the police and the Australian Cyber Security Centre.
Latitude Group Holdings Limited is in a suspension of operations until Monday.
– with AAP