Back

Hutt City Council Phishing Attack Exposes Sensitive Data of Hundreds

Severity: Medium (Score: 54.8)

Sources: Rnz.Co.Nz, Thecyberexpress, 1News.Co.Nz, Wellington.Scoop.Co.Nz

Summary

In March 2026, a phishing attack on the Hutt City Council led to the exposure of sensitive identity and financial information of hundreds of individuals. The attack originated when a staff member responded to a malicious email, granting hackers access to several email accounts. The council confirmed that the identity information of five individuals was compromised, while financial details of up to 732 individuals may have been exposed through email correspondence. Following the breach, the council implemented immediate containment measures and notified all affected individuals. Chief Executive Jo Miller stated that the incident has been reported to the Office of the Privacy Commissioner, and additional safeguards have been put in place to prevent future incidents. The attack highlights the growing sophistication of phishing threats, particularly those utilizing artificial intelligence. The council has committed to enhancing its cybersecurity measures and training staff to better identify phishing attempts. Key Points: • Phishing attack compromised identity data of 5 individuals and financial data of 732. • Attack originated from a staff member responding to a malicious email. • Hutt City Council has implemented immediate containment and notified all affected parties.

Key Entities

  • Data Breach (attack_type)
  • Phishing (attack_type)
  • Hutt City Council (company)
  • CWE-200 - Exposure of Sensitive Information (cwe)
  • Government (industry)
  • T1566 - Phishing (mitre_attack)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed