Last week, it had been reported that an Oxfam Australia customer database containing 1.7 million customers’ contact details and donor information was for sale on the dark web. Since this news came to light Oxfam Australia has launched an investigation into the data breach.
Oxfam Australia is a charity which aims to alleviate poverty throughout Australia, Asia, Africa and the middle east, operating under the larger Oxfam umbrella. Last week an Oxfam Australia database was advertised for sale on a hacker forum. The threat actor who advertised claimed that the database holds the donor and contact information of 1.7 million people. It has been confirmed by BleepingComputer, who first reported the story, that the database sample posted online contains customers email addresses, names, physical addresses, phone numbers, and donation amounts, all of which appears to be legitimate data.
