Emergency Text and Email Service of Early Warning Network (EWN) Hacked
EWN is dedicated to the provision of a multi-channel alert system that leads the world in capability.
“The unauthorised alert sent on Saturday night was undertaken by an unauthorised person using illicitly gained credentials to login and post a nuisance spam-notification to some of our customers,” EWN posted on its website.
Cyber attackers have been sent messages via email, text and landline to Australian peoples. Following message sent.
"EWN has been hacked. Your personal data stored with is not safe. We are trying to fix the security issues. Please email [email protected] if you wish to unsubscribe."
Early Warning Network give statement on Facebook,
Update 11am EDT 7th January
The unauthorized alert sent on Saturday night was undertaken by an unauthorized person using illicitly gained credentials to login and post a nuisance spam-notification to some of our customers. The link used in this alert were non-harmful and your personal information was not compromised in this event. Investigations are continuing with the Police and Australian Cyber Security Centre.
At around 9:30pm EDT 5th January, the EWN Alerting system was illegally accessed with a nuisance message sent to a part of EWNs database. This was sent out via email, text message and landline. EWN staff at the time were able to quickly identify the attack and shut off the system limiting the number of messages sent out. Unfortunately, a small proportion of our database received this alert. Our systems are back up and running providing ongoing alerts for severe weather and natural hazard events. Investigations are continuing with police involvement.
EWN managing director, Kerry Plowright, said to ABC, the breach is believed to have come from within Australia and involved “compromised login details”.
“This event did not compromise anybody’s personal information,” he said.
“The actual data held in our system is just ‘white pages’-type data, we deliberately don’t hold any other personal information.
“The purpose of that notification from the person that sent it was to damage this business. It was malicious.”
Mr Plowright said not all of the company’s clients were affected, but those that were included local, state and federal government agencies.
“We’re incredibly embarrassed that we’ve put some of our customers through this embarrassment and they’ve been very gracious in that process.”
He said hacking has become a reality of doing business in the IT world, but the company would do everything it could to prevent further breaches.