BleepingComputer learned of a threat actor claiming to be selling a database containing the Oxfam Australia contact and donor information for 1.7 million people. The database samples included names, email addresses, addresses, phone numbers, and donation amounts. The charity is investigating the incident and will update its security advisory as more information is known. It is unknown what data was potentially accessed and how many people were affected. All donors should be on the lookout for phishing attacks claiming they are from Oxfam and asking for further personal information.
Source: https://www.bleepingcomputer.com/news/security/oxfam-australia-investigates-data-breach-after-database-put-up-for-sale/