'Weak' security on super funds as some see $0 balance
Hackers have targeted hundreds of Australian superannuation accounts from funds managing more than $1 trillion in assets in a coordinated online attack using stolen passwords, with experts warning security needs to be bolstered.
Hostplus, Rest, AustralianSuper and Australian Retirement Trust are among those targeted in an attack confirmed on Friday by Australia's National Cyber Security Coordinator Lieutenant General Michelle McGuinness.
The nation's biggest fund AustralianSuper said hackers allegedly sought lump sum withdrawals from up to 600 accounts.
Its more than 3.4 million members are struggling to log in amid high call-centre traffic and intermittent outages to online services, but some who have been able to gain access have been warned they will not like what they see.
"Even though you may not be able to see your account, or you are seeing a $0 balance, your account is secure," the fund said, assuring members it is a temporary glitch.
"We are working hard to resolve is as quickly as possible," it said.
Cybersecurity expert Matthew Warren said multi-factor authentication, requiring uniquely generated codes in addition to entering a password, needs to be implemented for every customer.
"This major cyber attack clearly highlights the weak authentication measures implemented by the Australian superannuation industry," the director of RMIT's cybersecurity centre said.
Insignia Financial, which oversees brands including MLC and IOOF, said about 100 accounts on its Expand platform had been targeted, but no financial impact to customers had been detected.
Rest said 8000 accounts may have had personal information accessed but no member funds were transferred.
"We have already contacted impacted members to reinstate their account access and provide next steps and support," it said.
While some targeted accounts were not breached, the Association of Superannuation Funds of Australia revealed "a number of members" had funds stolen and would be contacted.
The attack took place on the weekend, and follows rising reports of online security threats in Australia with a cyber crime reported every six minutes.
Superannuation and banking firms were working with government agencies to respond to the attack, Lt Gen McGuinness said.
Superannuation funds are urging members to check for signs of fraud, ensure banking and contact details are correct, and change passwords if they are not unique to their account.
The superannuation industry association also confirmed members' funds had been stolen.
"While the majority of attempts were repelled, unfortunately a number of members were affected," the group said in a statement.
It is believed that attackers were targeting accounts that could deliver lump sum withdrawals.
Government agencies would investigate, Prime Minister Anthony Albanese said, warning online attacks had become common.
"There is an attack, a cyber attack in Australia about every six minutes," he said.
The Australian Signals Directorate Annual Cyber Threat Report in 2024 revealed cyber crime reports had increased 12 per cent, with an average of 100 calls per day to the Australian Cyber Security Hotline.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
New York Post
2 hours ago
- New York Post
Mom warns parents after chilling discovery at child's birthday party: ‘Deeply disturbing and dangerous'
An Australian mother has warned fellow parents after claiming her children found a butcher's knife hidden inside a play structure at a popular Gold Coast play center. Tiani Palmer described the moment her family's celebration turned into a nightmare. Advertisement 'On the 6th of July 2025, we celebrated my daughter's 4th birthday at Bella's Wonderland in Southport. What was supposed to be a magical day quickly turned into something deeply disturbing and dangerous,' she wrote on Facebook. 3 Tiani Palmer described the moment her family's celebration turned into a nightmare. Tiani Palmer/Facebook According to Palmer, her six-year-old son and two other boys of the same age were playing in the main playground area when they stumbled upon the large knife hidden inside the equipment. 'While playing in the main playground area, my 6-year-old son and two other 6-year-old boys found a large butcher's knife hidden down the side of the mats inside the play structure. A KNIFE. In a children's playground.' Advertisement Palmer said she immediately handed the weapon to staff, who she claimed reacted with indifference. 'I was in shock and incredibly concerned, not just for my own children but for every family that walks through those doors,' he said. 3 Palmer said she immediately handed the weapon to staff, who she claimed reacted with indifference. Google Maps Palmer said she attempted to contact the play center's management but was repeatedly stonewalled. Advertisement 'The next day, I called the center multiple times, asking to speak with the manager. I was told she was 'sick' and would call me back when she could. I never heard from her. I even followed up with an email. Still nothing. 'For the price you pay to host a birthday party at these types of places, you would think your child would be safe and it's a safe environment. My daughter's birthday could have ended in absolute tragedy.' 'I'm beyond disappointed and honestly disgusted by how this situation was handled.' She has reported the incident to Queensland Police. Advertisement 3 Palmer said she attempted to contact the play center's management but was repeatedly stonewalled. Tiani Palmer/Facebook However, a Queensland Police Service spokesperson told the Gold Coast Bulletin the center also lodged an online report to police. They have so far been unable to determine how the knife got there. 'Officers spoke with management and staff, however it remains unknown who placed the knife at the location or when it was placed there,' the spokesperson said. 'CCTV footage did not assist with identifying any offender. At this time, there are no further avenues of investigation.'
San Francisco Chronicle
4 hours ago
- San Francisco Chronicle
Chinese woman becomes third person charged under Australia's foreign interference laws
MELBOURNE, Australia (AP) — A Chinese citizen was charged Monday under Australia's recent foreign interference laws with covertly collecting information about an Australian Buddhist association, police said. The woman, an Australian permanent resident based in the capital Canberra, is only the third person charged since the laws were passed in 2018 and the first to be accused of interfering with the general population, Australian Federal Police Assistant Commissioner Stephen Nutt police said. She was charged in a Canberra court with covertly gathering information about a local branch of the Buddhist association Guan Yin Citta on behalf of the Public Security Bureau of China. The association is banned in China. Police have not detailed her alleged objectives. 'We allege the activity was to support intelligence objectives of the China's Public Security Bureau. This is the first time the AFP has charged a person with foreign interference that allegedly involves targeting members of the Australian community,' Nutt told reporters. 'Foreign interference is a serious crime that undermines democracy and social cohesion. It is a crime carried out by or on behalf of a foreign principal that involves covert and deceptive conduct or threats of serious harm or menacing demands,' Nutt added. The woman, who was arrested at her home Saturday, cannot be named publicly due to a court order. She was remanded in custody and faces a maximum 15 years in prison if convicted. She is the first foreign national to be charged under the sweeping laws that created a rift between Australia and China when they were first announced in 2017. Vietnam-born Melbourne businessman and local community leader Di Sanh Duong was sentenced to two years and nine months in prison last year over an attempt to influence a former federal government minister on behalf of China. Sydney businessman Alexander Csergo also was charged with foreign interference for allegedly accepting payments for information from two suspected Chinese spies. He pleaded not guilty to the charge. Mike Burgess, director-general of the Australian Security Intelligence Organization, said the nation's main domestic spy agency had made a signficant contribution to the latest arrest. 'Foreign interference of the kind alleged is an appalling assault on Australian values, freedoms and sovereignty,' Burgess said in a statement.
4 hours ago
Woman becomes third person charged under Australia's foreign interference laws
MELBOURNE, Australia -- A Chinese citizen was charged Monday under Australia's recent foreign interference laws with covertly collecting information about an Australian Buddhist association, police said. The woman, an Australian permanent resident based in the capital Canberra, is only the third person charged since the laws were passed in 2018 and the first to be accused of interfering with the general population, Australian Federal Police Assistant Commissioner Stephen Nutt police said. She was charged in a Canberra court with covertly gathering information about a local branch of the Buddhist association Guan Yin Citta on behalf of the Public Security Bureau of China. The association is banned in China. Police have not detailed her alleged objectives. 'We allege the activity was to support intelligence objectives of the China's Public Security Bureau. This is the first time the AFP has charged a person with foreign interference that allegedly involves targeting members of the Australian community,' Nutt told reporters. 'Foreign interference is a serious crime that undermines democracy and social cohesion. It is a crime carried out by or on behalf of a foreign principal that involves covert and deceptive conduct or threats of serious harm or menacing demands,' Nutt added. The woman, who was arrested at her home Saturday, cannot be named publicly due to a court order. She was remanded in custody and faces a maximum 15 years in prison if convicted. The Chinese Embassy in Canberra did not immediately respond on Monday to a request for comment. She is the first foreign national to be charged under the sweeping laws that created a rift between Australia and China when they were first announced in 2017. Vietnam-born Melbourne businessman and local community leader Di Sanh Duong was sentenced to two years and nine months in prison last year over an attempt to influence a former federal government minister on behalf of China. Sydney businessman Alexander Csergo also was charged with foreign interference for allegedly accepting payments for information from two suspected Chinese spies. He pleaded not guilty to the charge. Mike Burgess, director-general of the Australian Security Intelligence Organization, said the nation's main domestic spy agency had made a signficant contribution to the latest arrest. 'Foreign interference of the kind alleged is an appalling assault on Australian values, freedoms and sovereignty,' Burgess said in a statement. The charge comes as Prime Minister Anthony Albanese mends bilateral relations with China that plumbed new lows under the previous Australian administration over issues including foreign interference laws. Xi Jinping for the fourth time since the Australian leader was first elected in 2022.
