Retirement
50,000 super fund members impacted by data breach
Around 50,000 member records were impacted by the breach that took place earlier this month.
50,000 super fund members impacted by data breach
Around 50,000 member records were impacted by the breach that took place earlier this month.
Spirit Super has confirmed that 50,000 of its member records have been compromised following what the super fund described as a broad phishing attack campaign.
The member records date back to 2019 and 2020 and contain names, addresses, ages, emails, phone numbers, account numbers and balances.
However, according to the fund, the records do not include dates of birth, government identification numbers such as tax file numbers or driver’s licence details, or any bank account information.
The $26 billion industry super fund with 325,000 members said that members’ money remained safe following the incident and all those affected had been contacted.
“The breach was the result of an email phishing activity rather than a system error, regardless, we are taking all reasonable steps to prevent this from happening again,” Spirit Super said.
“Please be assured investigations to date indicate that accounts have not been compromised. We have increased the levels of security to ensure our members’ accounts remain safe. Our investigation will continue.”
Explaining the incident, Spirit Super said that an email account of one of its staff members was compromised on 19 May.
“In short, it was human error during a malicious email attack posing as official correspondence,” the fund said.
“This was not the result of a material security control weakness or technology failure. The malicious email resulted in a staff member's password being compromised.”
Despite employing multi-factor authentication in addition to usernames and passwords, the super fund said the additional layer of protection had been thwarted by the attacker.
“Phishing attacks such as this are becoming increasingly sophisticated and common,” said Spirit Super.
“We have a skilled internal team focused on cyber security and protecting your information. This team detected the compromised account and acted quickly to contain and limit the impact of the breach. No further accounts or systems were impacted.”
Spirit Super said that it did not believe the attack was targeted and it remained unclear whether the attacker was aware that they had access to the personal information.
Members have been told to remain vigilant to unsolicited emails, text messages or phone calls and to report any suspicious matters to the ACCC’s Scamwatch.
Those impacted by the breach have also been encouraged to not publicly share that their personal information may have been compromised to help avoid being targeted.
“Spirit Super takes your privacy and the security of our information and systems extremely seriously. Online threats are constantly evolving, and no organisation can completely mitigate these risks,” the fund said.
“We continue to invest in internal capability, technology, improved internal processes, and staff training to reduce the likelihood and severity of future data breach events.”
RELATED ARTICLES
Superannuation
Aware Super unveils innovative digital tool to boost retirees' financial confidence
Aware Super has unveiled a groundbreaking digital advice tool, Retirement Manager, designed to empower retirees by addressing their most pressing financial concerns. Developed in collaboration with ...Read more
Superannuation
APRA's super shake-up: Balancing accountability and innovation in the next round
Australia’s performance test has forced long-overdue transparency in super and accelerated consolidation. But as the regime broadens, its blunt edges are colliding with investment complexity, ESG ...Read more
Superannuation
APRA’s performance test is doing its job — but now it risks doing the wrong job well
Australia’s superannuation performance test has flushed out chronic underperformance and catalysed consolidation. But its latest results have reignited a bigger question: can a single, ...Read more
Superannuation
Rest invests in US-based REIT amid changes in debt financing markets
In a strategic move that underscores the evolving landscape of commercial finance, Rest, one of Australia's largest profit-to-member superannuation funds, has announced a significant investment into ...Read more
Superannuation
Australia's super performance test transforms investing: What's the next move?
APRA’s latest performance test has done more than name and shame lagging super options; it has rewired investment strategy, compressed fees and accelerated consolidation across the $3Read more
Superannuation
Australia's super test dilemma reform could boost long-term gains while keeping accountability sharp
APRA’s latest performance test results have reignited a structural debate: can Australia hold funds to account while still backing the nation’s long-horizon investment needs? With the government ...Read more
Superannuation
Super funds rethink strategy as APRA's performance test hits a fork in the road
The latest performance test results have reignited debate over Australia’s superannuation benchmarking regime and prompted a formal government review. Behind the headlines, boards are quietly rewiring ...Read more
Superannuation
Aware Super enhances digital tools for financial advisers, boosting efficiency and client engagement
Aware Super has unveiled a suite of new digital features designed to streamline the workflow for financial advisers and their clients. This significant upgrade includes direct data feeds to Xplan and ...Read more
Superannuation
Aware Super unveils innovative digital tool to boost retirees' financial confidence
Aware Super has unveiled a groundbreaking digital advice tool, Retirement Manager, designed to empower retirees by addressing their most pressing financial concerns. Developed in collaboration with ...Read more
Superannuation
APRA's super shake-up: Balancing accountability and innovation in the next round
Australia’s performance test has forced long-overdue transparency in super and accelerated consolidation. But as the regime broadens, its blunt edges are colliding with investment complexity, ESG ...Read more
Superannuation
APRA’s performance test is doing its job — but now it risks doing the wrong job well
Australia’s superannuation performance test has flushed out chronic underperformance and catalysed consolidation. But its latest results have reignited a bigger question: can a single, ...Read more
Superannuation
Rest invests in US-based REIT amid changes in debt financing markets
In a strategic move that underscores the evolving landscape of commercial finance, Rest, one of Australia's largest profit-to-member superannuation funds, has announced a significant investment into ...Read more
Superannuation
Australia's super performance test transforms investing: What's the next move?
APRA’s latest performance test has done more than name and shame lagging super options; it has rewired investment strategy, compressed fees and accelerated consolidation across the $3Read more
Superannuation
Australia's super test dilemma reform could boost long-term gains while keeping accountability sharp
APRA’s latest performance test results have reignited a structural debate: can Australia hold funds to account while still backing the nation’s long-horizon investment needs? With the government ...Read more
Superannuation
Super funds rethink strategy as APRA's performance test hits a fork in the road
The latest performance test results have reignited debate over Australia’s superannuation benchmarking regime and prompted a formal government review. Behind the headlines, boards are quietly rewiring ...Read more
Superannuation
Aware Super enhances digital tools for financial advisers, boosting efficiency and client engagement
Aware Super has unveiled a suite of new digital features designed to streamline the workflow for financial advisers and their clients. This significant upgrade includes direct data feeds to Xplan and ...Read more
