Curtin Volunteers are seeking applications from keen Curtin students for the following voluntary roles (click the link for position descriptions) :
Submit your application today if you are passionate about volunteering and giving back to your community! Apply HERE.
Thanks to those who attended our fourth and final Clubs and Societies Committee Meeting for 2019 on the 16th October. We encourage those who did not attend the meeting, to take a look at the minutes HERE.
Items covered were
If anyone would like to provide further feedback or add to the club resources wish list, please don’t hesitate to send us an email.
Our next C&S committee meeting will be held in 2020 with dates to be advised.
Following on from our email earlier this week (see below thread), we have been in touch with Curtin’s Privacy team and the Cyber Security Operations team to discuss potential issues involving clubs and societies using useGET and a data breach. We ask that clubs respond quickly and take the appropriate action, such as:
Immediately cease using GET. Perhaps consider using a new ticketing program for event ticket sales.
Contact your members AND those who attended your events after purchasing tickets via this system immediately.
Notify them of this data breach to advise them about some sensitive information that exposed some of your member data (including but not limited to phone numbers, date of birth, names, emails, student numbers, and other sensitive financial information), that may also contain data from your club/society. If you have not used UseGet (formerly QNect) in the last 16 months, then this may not apply to you, but your data may still be present in the leak.If any of your member's data is present, pro-actively reach out to them to alert them to keep an eye out for any suspicious activity
Reach out to UseGet (https://useget.com) to get a full list of any leaks that they may be aware of (particularly any financial information)
Avoid clicking on any links from sources you do not recognise. For example, if any links are sent purporting to come from QPay, check that the domain name is from quicklypay.it and signed (usually identified by a green lock box on most browsers) OR hover your mouse over the name of the link without clicking it to view the full URL. Please note they should never ask for any passwords or financial information.
Please note that we do not know the extent of the data breach and we are unaware of what personal information has been exposed (contact numbers, credit card details etc) however it’s is best to be as transparent as possible with your members at this time and advise them regardless.
Email: 13/09/19 - Clubs Officer
As per an article on Reddit: https://www.reddit.com/r/unsw/comments/d0qzro/massive_50k_australian_student_data_breach/?utm_source=share&utm_medium=ios_app
It would appear that a third party that allows student clubs to manage themselves has not been protecting their data correctly.
Initial reports are showing University of Sydney is particularly impacted. Unfortunately there is no way for Curtin as an external agency to determine if any Curtin students are impacted.
The Cyber Security Operations team is asking student clubs who might have used this service to get in touch to determine if there are any measures that need to be taken around this breach. Please advise via return email?
Email: 10/09/19 - Clubs Officer