Summary: A wave of credential stuffing attacks affected multiple large Australian superannuation funds over the weekend, compromising thousands of member accounts. Despite most attempts being repelled, it is reported that over 20,000 accounts were breached, with members losing some savings. Several major funds have taken immediate action to secure affected accounts and advise members on online security measures.
Affected: Australian superannuation funds including AustralianSuper, Hostplus, REST, and Insignia Financial
Keypoints :
- More than 20,000 accounts targeted in credential stuffing attacks, with reports of account breaches and potential loss of savings.
- Major funds, such as AustralianSuper and Rest, confirmed that specific member accounts were compromised, prompting immediate defensive measures.
- ASFA is launching a hotline and toolkit to enhance coordination among superannuation industry stakeholders for better financial crime protection.