cyber daily logo

Breaking news and updates daily. Subscribe to our Newsletter

Breaking news and updates daily. Subscribe to our Newsletter X facebook linkedin Instagram Instagram

BHF Couriers denies credit card data breach

NSW courier company says data currently circulating online is “very old data”.

user icon David Hollingworth
Mon, 15 Apr 2024
BHF Couriers denies credit card data breach
expand image

A hacker on a popular clear web hacking forum has claimed a successful hack on a Western Sydney courier company, claiming to have successfully exfiltrated more than 12 gigabytes of data.

The hacker – who goes by the forum name Okhotnik, which is Russian for “hunter” – also said that the data contained credit information and “literally everything”.

“Hello fellow breachers and feds,” Okhotnik said in a post dated 10 April, “a few days ago I successfully breached the company bhfcouriers [sic]”.


“Their databases contain [sic] literally everything,” the hacker said.

“From company data over invoices to order data, containing addresses, credit card information and phone numbers.”

The hacker claimed to have more than 19 million rows of data from more than a dozen .CSV files.

The company in question, however, has said the information is “very old data” dating back to 2009.

“We first were informed about it on Friday,” BHF Couriers’ managing director Martin Bailey told Cyber Daily via email.

“This data was very old data related to 2009 and somehow was still around,” Bailey said. “The 19 million files that were reported were not correct.”

Bailey also noted that any credit card data that is in the leak is encrypted.

“All credit card data was encrypted and so the information was not valuable to anyone,” Bailey said.

According to Bailey, the hacker did attempt to extort BHF Couriers, sharing a sample of the exfiltrated data in a ransom demand that was shared with Cyber Daily.

“Believe me now?” the note said. “Well, I demand you to pay $2,500 USD in the crypto currency Monero (XMR) to the following wallet address.”

The hacker then shared their wallet details alongside a deadline to pay.

“You have five days to complete the payment, otherwise all the data will be made public,” the note concluded.

Two days after making their original post, Okhotnik updated it, saying that the data was now free and hosted on a number of online storage sites.

BHF Couriers has informed its staff and customers and has alerted the Australian Cyber Security Centre.

David Hollingworth

David Hollingworth

David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.

cd intro podcast

Introducing Cyber Daily, the new name for Cyber Security Connect

Click here to learn all about it
cyber daily subscribe
Be the first to hear the latest developments in the cyber industry.