Cyberattack Hits Australian Banks: Employee Logins Stolen and Sold Online - 1

Image by Kevin Horvat, from Unsplash

Cyberattack Hits Australian Banks: Employee Logins Stolen and Sold Online

  • Written by Kiara Fabbri Former Tech News Writer
  • Fact-Checked by Sarah Frazier Former Content Manager

Cybercriminals stole login credentials from nearly 100 employees across Australia’s top banks, leaking them on the dark web and Telegram channels.

In a rush? Here are the quick facts:

  • Nearly 100 Big Four bank employees had logins stolen by infostealing malware.
  • Credentials were leaked on the dark web and Telegram for hackers to access.
  • Most victims were current or former employees and contractors with email access.

Nearly 100 employees from Australia’s Big Four banks—ANZ, CommBank, NAB, and Westpac—have had their work logins stolen by cybercriminals, as reported by ABC News . The logins were taken using a type of malware called an “infostealer,” which secretly extracts valuable data from infected computers and phones.

ABC reports that these stolen login credentials were distributed through dark web forums and Telegram channels, providing hackers with easy access. The majority of those affected include active and former employees, as well as contractors who still maintain email access to corporate systems.

ABC previously reported that analyst Leonid Rozenberg described the situation as though hackers had an unrestricted entry point. Once access is gained, a hacker can install ransomware and steal large volumes of customer data.

Experts warn that even with multi-factor authentication (MFA) in place, security is not guaranteed—hackers need only one compromised login to breach a system. Rozenberg emphasized that attackers require just a single credential to carry out extensive damage, as reported by ABC.

The breach extended beyond direct bank employees. According to ABC, third-party service providers—including those handling communication and customer management—also had their credentials stolen. Rozenberg noted that attackers target not only direct bank access but also the external services banks rely on.

This discovery emerged after researchers found that the same malware had also stolen more than 31,000 banking passwords from customers, as noted by ABC. Cyber experts clarified that the malware resides on customer or employee devices, not on the banks’ internal systems.

According to Rozenberg, the malware poses a threat to any business, in any industry, anywhere in the world.

Judge Rules Apple Willfully Violated Court Order In Epic Games Trial - 2

Photo by Alexander Schimmeck on Unsplash

Judge Rules Apple Willfully Violated Court Order In Epic Games Trial

  • Written by Andrea Miliani Former Tech News Expert
  • Fact-Checked by Sarah Frazier Former Content Manager

Federal judge Yvonne Gonzalez Rogers said that Apple willfully violated an injunction from 2021 during the Epic Games Trial this Wednesday. Gonzalez Rogers also ordered the tech giant to immediately cease collecting commissions on external App Store sales and to allow developers to freely direct customers to alternative payment methods.

In a rush? Here are the quick facts:

  • Federal judge said Apple willfully violated the injunction from the Epic Games case.
  • Apple was accused of anti-competitive behaviour for charging 30% and 27% for app purchases, and for preventing developers from offering alternatives.
  • The judge declared Apple must stop charging commissions on off-app purchases immediately.

According to the court filing , after the trials with Epic Games in 2021, the court issued an injunction restraining Apple from engaging in anti-competitive behaviors such as charging high percentages on commissions for app downloads through the App Store and another percentage through off-app sales—30 and 27% respectively. The document also prevented Apple from discouraging developers and customers from using alternatives.

“The Court FINDS Apple in willful violation of this Court’s 2021 Injunction, which was issued to restrain and prohibit Apple’s anticompetitive conduct and anti-competitive pricing,” states the document. “Apple’s continued attempts to interfere with competition will not be tolerated.”

The judge said that Apple “knew exactly what it was doing and at every turn chose the most

anticompetitive option”, and the company’s executives lied under oath. The tech giant was urged to comply with the court’s requirements and the previous injunction.

“This is an injunction, not a negotiation,” declared the judge. “Effective immediately, Apple will no longer impede developers’ ability to communicate with users nor will they levy or impose a new commission on off-app purchases.”

Gonzalez Rogers also accused Apple of withholding information and documents of a meeting with CEO Tim Cook, and that the company has abused its privileges to avoid providing the required data. According to the judge’s statements, it was Cook who refused to comply with the court’s requirements and wanted to keep the high commissions on sales.

Many have been calling this new ruling a win for Epic Games. The video game company has been in multiple legal battles against tech giants for anti-competitive behaviours, including a recent lawsuit against Google and Samsung for blocking competition in app distribution.