This article is more than 1 year old

TrainLink database popped

The NSW state government has been left red-faced by its transport department, which operates an online service caught out in a data breach.

The possible breach of TrainLink's booking site, reported here by the Australian Broadcasting Corporation, was announced by the organisation on Friday.

TrainLink – which handles bookings for regional rail and coach travel – has told the NSW Police and its owner, Transport for NSW. It's taken its online booking system offline while it investigates.

It's also asking AusCERT to help it with the forensics, to work out if customer data has been accessed. It provides the usual reassurance that credit card data is not stored (because nobody ever used other data for identity fraud).

The NSW Privacy Commissioner has also been notified, TrainLink says. ®

More about

TIP US OFF

Send us news