Unsplash
Cert NZ said the Australian-owned document creation and sharing web application Nitro PDF had experienced a “significant” breach.
Thousands of New Zealanders’ email addresses and passwords are potentially compromised after a data breach at Nitro PDF.
On Friday afternoon, Cyber-security agency Cert NZ said the Australian-owned document creation and sharing web application had experienced a “significant” breach.
A person claiming to have the data published 2.6 million email addresses and encrypted passwords, including more than 4000 “.nz” email addresses.
”Cert NZ understands there has been further data released in this breach, the details are not yet confirmed,” it said in a statement. It was unable to verify the authenticity of the data.
READ MORE:
* Cyber-crime reports rose, but scam losses fell during Covid-19 alerts
* Give yourself an online privacy and security check-up
Given some New Zealanders have email accounts ending in “.com”, many more could be affected, a spokeswoman said.
The agency is attempting to contact affected Kiwis to help them mitigate any cybersecurity risks, she said.
Nitro PDF is reportedly used by more than 10,000 business customers including the likes of Google, Apple and Microsoft.
Cert NZ recommends anyone who uses the Nitro PDF service change their password immediately to something long, strong and unique. They should also update any other accounts using the same password.
