The Star Entertainment Group, operating The Star casinos in New South Wales and Queensland, faced a substantial data breach resulting from a cyberattack orchestrated against HWL Ebsworth Lawyers, culminating in the exposure of sensitive personal information belonging to some of its customers. The breach, originating from a Russian hacking group, led to the compromise of millions of documents, including bank details, passports, physical addresses, and a multitude of private records, which subsequently surfaced on the dark web for an alarming three-week period before they were removed through a court order. The revelation of this breach comes amidst perplexing questions about the protracted delay in notifying affected individuals, intensifying apprehension about the safeguarding of personal information and the lingering impact on those compromised.
A spokesperson for HWL Ebsworth Lawyers emphasized the intricate and multifaceted challenge posed by the stolen data, highlighting the complexity of the incident. One customer, aggrieved by the potential exposure of his passport, driving license, tax return number, and birth certificate, voiced his dissatisfaction, underscoring the deep ramifications for the impacted individuals. The concerning nature of the breach prompted The Star to offer to cover the replacement costs for affected customers’ driver’s licenses or passports, reflecting the severity of the breach and the company’s acknowledgment of the distressing implications.
The delayed notification stemming from the exhaustive manual review required to assess the extent of the personal information involved and identify the affected individuals prompted questions about The Star’s response to the breach and its commitment to transparency and timely disclosure. This incident has further compounded the challenges faced by The Star Entertainment Group, adding to a series of setbacks, including previous compliance issues, and intensifying scrutiny from regulatory authorities, potentially imperiling the casino’s operational license amidst heightened vulnerability and persistent threats in the cybersecurity landscape.
