Cyber Incident Victim: LJ Hooker
Date:
Dec 2022
Location:
Australia
Summary
A real estate agency's office in Sydney's exclusive Palm Beach suburb experienced a data breach, exposing approximately 375GB of sensitive information, including staff passport details, with concerns that customer data may have been compromised. The breach impacted one of three local offices, prompting immediate notification to affected customers and relevant cybersecurity authorities, alongside an ongoing evaluation of compromised data and security enhancements. While the agency emphasized data protection as a priority, the incident raised broader apprehensions about the vulnerability of personal information collected during property transactions and rental applications.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 3 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
In December 2022, LJ Hooker's Palm Beach real estate office on Sydney's Northern Beaches experienced a data breach resulting in approximately 375GB of sensitive information being exposed to hackers. The compromised data included staff passport details and other personal information, which subsequently appeared for sale on the dark web. This incident marked the second cyberattack targeting Australia's real estate industry within two months, following an October 2022 breach at Harcourts in Melbourne. The breach specifically affected one of LJ Hooker's three offices in the exclusive Palm Beach suburb, an area characterized by median house prices of $4.7 million and frequented by high-net-worth individuals. While the full scope of compromised customer data remained under investigation, concerns emerged regarding potential exposure of sensitive details belonging to both property owners and prospective tenants who had interacted with the agency. The office employed 19 staff members under Principal David Edwards at the time of the incident, though the identity of the attackers was not disclosed by the company.
LJ Hooker's corporate spokeswoman confirmed the franchise office took immediate action upon discovering the breach, engaging its IT provider to assess impacted customer data and initiating direct notifications to affected clients. The company also reported the incident to relevant government cybersecurity and data protection authorities. While emphasizing that data security held "utmost importance" for independently operated franchises, the spokeswoman did not disclose the complete extent of the breach. Industry observers raised concerns about systemic vulnerabilities in real estate data practices, particularly regarding retention of personal information from rental applicants who never secured properties. Tenants' Union of NSW representative Leo Patterson Ross highlighted the compulsory nature of data collection during property applications, noting that stored personal details present attractive targets for cybercriminals. The breach occurred within LJ Hooker's nationwide network of 430 offices, though no other branches were confirmed affected at the time of reporting.