This is a work in progress. While we strive for accuracy, some breach details may be incomplete or pending verification.

Early Warning Network

Summary

The Early Warning Network, an emergency text and email alert service used by Australians to receive warnings about bushfires, floods, and other natural disasters, was hacked in January 2019. The attackers sent mass messages to thousands of subscribers warning them that their personal data had been compromised. The breach of a critical emergency communication system raised serious concerns about the security of Australia's disaster response infrastructure.

What Happened

Hacking. Cybercriminals gained unauthorised access to the Early Warning Network's messaging system and used it to send alerts to thousands of subscribers informing them that their personal information—including email addresses and phone numbers—had been compromised. The attackers demonstrated their control of the system by using the legitimate emergency alert infrastructure to notify victims of the very breach they had caused. The hack exposed vulnerabilities in a system that Australians rely on for potentially life-saving emergency notifications during bushfires, floods, severe storms, and other disasters.

Impact on Individuals

  • Emergency System Compromised: Trust in critical disaster warning infrastructure undermined
  • Contact Details Exposed: Phone numbers and email addresses registered for emergency alerts stolen
  • Confusion and Fear: Recipients uncertain whether emergency messages were legitimate or malicious
  • Future Alert Doubts: Subscribers may question authenticity of genuine emergency warnings
  • Phishing Vector: Attackers could use stolen details for disaster-themed scam campaigns

The breach was particularly concerning because it affected people who had proactively signed up to protect themselves during emergencies, and because it compromised a system relied upon during life-threatening situations.

Response

The Early Warning Network immediately took its systems offline and launched an investigation into the breach. The service provider notified all affected subscribers and reported the incident to relevant authorities. Security experts were engaged to conduct a comprehensive forensic review and identify how the attackers gained access to the messaging platform. The network implemented enhanced security measures including multi-factor authentication, improved access controls, and enhanced monitoring before restoring service. The incident prompted broader reviews of emergency communication systems across Australia, with questions raised in parliament about the adequacy of cybersecurity protections for critical public safety infrastructure. The breach highlighted the vulnerability of emergency alert systems and the potential for attackers to undermine public trust in disaster response capabilities. +++

Verification Source: View original statement