The Reserve Bank of New Zealand, known as Te Pūtea Matua, has suffered a data breach after threat actors hacked a third-party hosting partner.
The Reserve Bank is the central bank of New Zealand and is responsible for creating monetary policy to stabilize prices in the country.
On January 10th, the Reserve Bank disclosed that they had suffered a data breach after attackers illegally accessed data stored at a third-party hosting provider.
“A third party file sharing service used by the Bank to share and store some sensitive information, has been illegally accessed,” the notification stated.
Governor Adrian Orr of the Reserve Bank states that the breach has been contained but may have exposed commercially and personally sensitive information.
“We are working closely with domestic and international cyber security experts and other relevant authorities as part of our investigation and response to this malicious attack. The nature and extent of information that has been potentially accessed is still being determined, but it may include some commercially and personally sensitive information.”
“The system has been secured and taken offline until we have completed our initial investigations. It will take time to understand the full implications of this breach, and we are working with system users whose information may have been accessed. Our core functions remain sound and operational,” Orr said in a statement.
BleepingComputer was told that the Reserve Bank is not providing any further comment after contacting them to learn more about when the breach occurred, what hosting provider was breached, and what data was stolen.
In August, New Zealand suffered a wave of DDoS attacks against private and public organizations. One of those affected was the New Zealand stock exchange, which had to halt trading after suffering a DDoS attack.
To read the original article: https://www.bleepingcomputer.com/news/security/new-zealand-reserve-bank-suffers-data-breach-via-hacked-storage-partner/