🔒breach.co.nz · the NZ & Australia breach register 🛡️ A Govern service
Register › 🇦🇺 AU › Government
Government sector · leaderboard
Own the Government leaderboard
The top banner across the Government overview and every Government record — one advertiser, exclusively.
Own this leaderboard → breach@govern.co.nz

Transport for NSW

🇦🇺 New South Wales · Transport for NSW · Record AU-2021-0130
○ Reported — awaiting official confirmation
Reported — awaiting official confirmation. The facts below are drawn from the organisation's own disclosure and credible reporting. Figures are as reported; unknowns are labelled, not estimated by us.
People affected
Not disclosed
Breach date
2021-01
Regulator
Cyber Security NSW; NSW Police
Trust tier
B · Reported

Data exposed

Driver-licence information, names, email and residential addresses and contact numbers — both customer and employee data Company-confirmed

Confidence: Confirmed = regulator/court · Company-confirmed = the organisation's own disclosure · Media-reported = press. Figures without an official source are labelled, not estimated.

What happened

In early 2021 Transport for NSW was caught in the worldwide Accellion file-transfer (FTA) breach, with attackers taking driver-licence information, names, addresses and contact numbers belonging to both customers and employees [tfnsw-co], [tfnsw-itnews].

Current status

Disclosed. The total number affected was never disclosed, so none is asserted here.

Why it matters

A single vulnerable file-transfer appliance exposed government-held identity data — the same Accellion event that hit organisations worldwide, including the Reserve Bank of New Zealand.

GGOVERN Tabletop Exercises · Govern house Brief the minister with a decision you’ve already rehearsed. Book a Discovery Call →