this post was submitted on 30 Jun 2026
17 points (100.0% liked)

Australia

5061 readers
199 users here now

A place to discuss Australia and important Australian issues.

Before you post:

If you're posting anything related to:

If you're posting Australian News (not opinion or discussion pieces) post it to Australian News

Rules

This community is run under the rules of aussie.zone. In addition to those rules:

Banner Photo

Congratulations to @Tau@aussie.zone who had the most upvoted submission to our banner photo competition

Recommended and Related Communities

Be sure to check out and subscribe to our related communities on aussie.zone:

Plus other communities for sport and major cities.

https://aussie.zone/communities

Moderation

Since Kbin doesn't show Lemmy Moderators, I'll list them here. Also note that Kbin does not distinguish moderator comments.

Additionally, we have our instance admins: @lodion@aussie.zone and @Nath@aussie.zone

founded 3 years ago
MODERATORS
top 6 comments
sorted by: hot top controversial new old
[–] No1@aussie.zone 4 points 2 weeks ago

lmao. He's meant to be overcharging on government contracts.

[–] vk6flab@lemmy.radio 3 points 1 week ago (2 children)

I'm astonished at the lack of access controls within the bank.

[–] MisterFrog@aussie.zone 1 points 1 day ago

Banks have some extremely dubious security practices, and it's seemingly not explicitly regulated (i.e. there are no explicit minimum standards, as far as I can tell)

Bank of Melbourne last I checked (2024) allowed you a MAXIMUM of 12 characters on your password, with like 6 allowable special characters, no 2FA (they had a "second" password of 6 digits...).

And that's it.

No SMS verification either.

Like, wow.

(Could have been updated since then)

[–] Nath@aussie.zone 2 points 1 week ago

It depends on the position of the person who accessed the prime minister's account. The way this would work with most computer systems (including several places I've worked), you'd be given access because there could very-well be a reason why you'd need to access the customer's details. But the access would be flagged and reviewed as a routine process.

"Why did you access this celebrity's details?"
"They came into the branch and were in front of me."

Very well, carry on.
Obviously if you can't answer this question correctly, ~~bad things~~ appropriate consequences happen.

We trust these companies with our private details. They need to have systems in place to ensure they are worthy of their trust. At one job, it was my role to drill the Australian Privacy Principles into every single new hire. Reputable companies take this stuff very seriously, and CBA will be no different.

I can imagine that a contractor seconded to CBA, and not a direct hire might have skipped their equivalent induction session. If so, I expect that would be remedied for future secondments.

[–] naught101@lemmy.world 2 points 2 weeks ago

I'm impressed. That's at least three layers of incredibly lax security.

[–] apfelwoiSchoppen@lemmy.world 1 points 2 weeks ago

Knowing E&Y, they would have probably promoted him for the action if he weren't caught.