What happened
In late 2022 Queensland University of Technology was hit by the Royal ransomware group, which exfiltrated data and published it to a leak site [qut-itnews], [qut-bc]. QUT confirmed 11,405 individuals were affected β mostly current and former staff β with tax file numbers exposed for 3,820 of them, alongside bank account numbers.
Current status
Disclosed. The 11,405 figure is the universityβs own [qut-itnews].
Why it matters
Tax file numbers and bank details are prime identity-fraud material, and this breach shows ransomware groups increasingly steal-and-leak rather than merely encrypt.