Testing urged for 1200 after Melbourne childcare worker charged with sexual assaults
Melissa Brown
and
Kate Higgins
, ABC
Police have charged a childcare worker who was employed across 20 centres with 70 offences including sexual assault and producing child abuse material.
Photo:
ABC News/Kristofor Lawson
Warning: This story contains details of alleged child sex abuse that may distress some audience members.
More than a thousand children will be asked to undergo health screening after police charged a childcare worker with more than 70 offences allegedly linked to a childcare centre in Point Cook, in Melbourne's south-west.
Detectives from the Sexual Crimes Squad have arrested 26-year-old Point Cook man Joshua Dale Brown in relation to alleged sexual and other offending against eight children between April 2022 and January 2023.
Police said the alleged victims were between five months and two years of age.
Deputy Commissioner Wendy Steendam joined senior police, the premier and Victoria's chief health officer in addressing the media about the investigation on Tuesday.
"I will say from the outset that this is an incredibly distressing investigation and the information we are going to provide today is particularly confronting as it involved offences [allegedly] committed against some of our vulnerable people in our community," she said.
The charges include sexual penetration of a child, producing child abuse material and recklessly contaminating goods to cause alarm or anxiety.
Health authorities said they had taken a "cautious" approach in recommending 1200 children linked to the case be tested for potential infectious diseases.
Tests could take days or even weeks to come back.
Acting Commander Janet Stevenson says the accused man had a valid Working with Children Check.
Photo:
Supplied/ABC News
Acting Commander Janet Stevenson said Brown was not known to police before the investigation began in May and he had a valid Working with Children Check.
Police said the significant investigation commenced after detectives allegedly discovered child abuse material and later executed a search warrant at Brown's Point Cook home.
She said the families of the eight alleged victims were informed last week.
"As you can imagine, this was deeply distressing for the families to hear," Acting Commander Stevenson said.
She said Victoria Police and the Victorian Department of Health on Tuesday sent a letter to all families who had children enrolled in the centres where Brown worked, but she said it was not alleged that offences occurred at all the centres.
"I understand this information will be deeply concerning and come as a great shock to many of the community," she said.
Brown has been remanded in custody to appear at Melbourne Magistrates Court in September.
The Victorian government has established a webpage with information for affected families. Information, including details of the government's dedicated hotline, can be found
here
.
Police said the man had worked at 20 childcare centres between January 2017 and May 2025, and they were investigating an allegation of offending at a centre in Essendon.
The investigation is ongoing.
Chief Health Officer Christian McGrath says the health screening is being conducted out of an abundance of caution.
Photo:
ABC News/Richard Willingham
The Victorian Department of Health has initiated a public health response following the allegations.
Chief Health Officer Christian McGrath would not reveal whether Brown had tested positive to sexually transmitted infections but said the manner of the alleged offending meant some children may be recommended for screening for infectious diseases.
"This is a very complex and distressing matter, and our highest priority is the health and wellbeing of the children and families," McGrath said.
McGrath said 2,600 families who had attended the relevant childcare centres had been contacted about the recommended health screening.
"We do understand that this is another distressing element to the situation and we're taking this approach as a precaution," he said.
"We do believe it is a low risk but we want to offer this to provide assurance to the parents about the health and wellbeing of their children."
He said the infections children had been potentially exposed to could be treated with antibiotics.
Premier Jacinta Allan said the allegations were sickening.
"They are shocking and distressing, and my heart just breaks for the families who are living every parent's worst nightmare," she said.
"Families across Victoria will be horrified, will be angry and frightened."
Premier Jacinta Allan says affected families are being offered mental health support.
Photo:
Supplied/ABC News
The premier said the Early Childhood Regulator would launch an immediate investigation into the conduct of the early education providers that Brown worked for.
She said the Working with Children Check permit system would also be reviewed.
Allan said affected families were being offered mental health support.
The Victorian Liberals and Nationals issued a joint statement expressing their deepest sympathies and support for the alleged victims and their families.
They called for a comprehensive review of Victoria's safeguards for children in care, including the Working with Children Check regime and broader regulatory systems.
The Minister for Children Lizzie Blandthorn said changes to the national framework around improving safety in child care and education settings were being looked at by the states and territories.
If it is an emergency and you feel like you or someone else is at risk, call 111.
- ABC
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
RNZ News
8 hours ago
- RNZ News
What we know about Scattered Spider, the hacker group targeting airlines
By Annika Burgess , ABC Photo: AFP Alarm bells were being sounded that Scattered Spider, a notoriously aggressive and prolific hacking group, had a new favourite target - the airline sector. The FBI and tech companies Google and Palo Alto Networks put out alerts over the weekend. They warned of multiple incidents in the airline and travel industry that resembled the group's operations. Now, it is believed Australia might have fallen victim to the cybercriminals. Qantas has announced that 6 million customer accounts had been exposed in a "significant" cyber attack. The airline would not confirm if it was the target of Scattered Spider, but experts said the attack appeared to have its signature moves. Scattered Spider, or UNC3944, is a loose-knit but aggressive hacking group. The "scattered" gang of affiliates goes by various names and aliases, such as Octo Tempest, Star Fraud, Scatter Swine and Muddled Libra. The members are believed to be mainly young native English speakers from the US and the UK. Some have reportedly been as young as 16 years old. Since emerging in 2022, together the gangs have been accused of breaking into and stealing data from some of the world's largest companies. They are alleged to be behind more than 100 targeted attacks across industries including telecommunications, finance, retail and gaming. Photo: 123RF The group goes from sector to sector, often targeting sectors that face significant customer pressure. And they aim for the big fish. In 2023, hackers tied to Scattered Spider broke into gaming companies , MGM Resorts and Caesars Entertainment, partially paralysing casinos and knocking slot machines out of commission. The $US14 billion gaming giant MGM Resorts operates over 30 hotels and casinos around the world, including in Macau and Las Vegas. The group has also caused mayhem across the UK , hitting some of the largest retail brands, including Harrods, Co-Op and Marks & Spencer (M&S). A recent cyber attack on M&S disrupted the company's online business for weeks. It has resulted in about £300 million in lost operating profit. Scattered Spider is known to use tactics such as social engineering, where hackers trick people into letting them into systems. They essentially target human vulnerabilities. The chief executive of M&S confirmed that "threat actors" had gained access to the retailer's systems via one of its contractors using social engineering techniques. The group typically exploits an organisation's IT helpdesk, using publicly available information to pose as a staff member. David Tuffley, a cybersecurity expert from Griffith University, said the tactics could be "pretty aggressive". "They would know just how to talk in the right way, to get people to do what it is they want them to do," he said. The impersonations could take place through phishing attacks, often fake emails or text messages, or the hackers may even make phone calls directly to the help desk. Daswin De Silva, a professor of AI and analytics and director of AI strategy at La Trobe University, said the tactics were "really manipulative". "Help desks want to resolve issues as quickly as possible," Professor De Silva told the ABC. "With a large organisation that has outsourced some of their business functions, they tend to be removed from the day-to-day operations of the main business. "When there is a disconnect like this … the security can be compromised." Another tactic the group is known to use is called multi-factor authentication (MFA) bombing or MFA fatigue. It involves attackers repeatedly sending MFA requests, such as notifications to a user's device, in an attempt to overwhelm them and trick them into approving a login. This could enable them to gain access to the data warehousing platform or manipulate password resets. Qantas has released a statement saying that it detected unusual activity on Monday on a third-party platform used by a contact centre. The airline said 6 million customers had service records in the platform, and it believed the proportion of stolen data would be "significant". An initial review confirmed the data included some customers' names, email addresses, phone numbers, birth dates and frequent flyer numbers, the airline said. "Importantly, credit card details, personal financial information and passport details are not held in this system," the statement read. "No frequent flyer accounts were compromised, nor have passwords, PIN numbers, or login details been accessed." The breach comes as the FBI has sent out a notification saying it has recently observed Scattered Spider "expanding its targeting to include the airline sector". "They target large corporations and their third-party IT providers, which means anyone in the airline ecosystem, including trusted vendors and contractors, could be at risk," the FBI said in a statement posted on X. "The FBI is actively working with aviation and industry partners to address this activity and assist victims." Alaska Air Group-owned Hawaiian Airlines and Canada's WestJet have both recently reported being struck by unspecified cyber incidents. Qantas said it had notified the Australian Cyber Security Centre and the Office of the Australian Information Commissioner. A spokesperson for CyberCX told ABC News the incident had all the hallmarks of an attack from the Scattered Spider hacker group. Tuffley said he "wouldn't be too surprised" if the group was behind the attack. "Qantas are actually pretty good as far as cybersecurity goes, but obviously their call centre in the Philippines or wherever it was wasn't quite so good," he said. Previous breaches on major Australian companies, including Medibank and Optus, have highlighted how cyber attacks can see people's data used as a bargaining threat to make companies pay a ransom. Another concern for Qantas customers is that their personal data could be onsold and then used to conduct fraud. Tuffley said that often, data from large-scale breaches would be combined to assemble enough information to impersonate someone. Criminals could then carry out scams such as SIM swapping or financial fraud. "They could contact a telco and say 'Hi, this is Dave, I lost my phone and I want to get a new SIM installed,'" he said. "The telco will go through all sorts of security vetting, but if they've got enough information about you, then they can succeed at that." De Silva said that often after a major breach, there would be a secondary round of attacks based on the data that was stolen. That could involve using the data to ask for password resets or security check-ups. "The attack was first detected on Monday, but customers and the public were informed on Wednesday. This delay translates to more than 48 hours for subsequent targeted/personalised attacks towards individual customers," De Silva said. "The Australian government and relevant authorities must do better in managing the communications, impact and loss following cyber attacks." Qantas customers are being advised to stay vigilant and check accounts and transactions regularly, including frequent flyer accounts. As a general piece of advice, experts say individuals should never reuse passwords on any system or service. - ABC
RNZ News
13 hours ago
- RNZ News
Second man charged after Melbourne childcare worker accused of 70 offences
By Danny Tran , Ben Butler and Andi Yu , ABC A police cordon in Australia. Photo: AFP/ ABC Far North - Isaac Egan Police investigating a Melbourne childcare worker accused of child sex crimes have charged a second man with serious offences, including bestiality. Michael Simon Wilson, of Wyndham Vale, is also facing charges related to child abuse material and sex offences, according to the Melbourne Magistrates' Court. He and childcare worker Joshua Dale Brown will next face the court in September. Brown is facing more than 70 charges allegedly involving children at the Creative Garden Early Learning centre in Point Cook, in Melbourne's western suburbs, between April 2022 and January 2023. Police have said there is no evidence to suggest any other staff in any other centre were involved in Mr Brown's alleged offending. It comes as the Victorian government has announced it will fast-track reforms to the childcare sector following the charges against Brown. Premier Jacinta Allan announced on Wednesday her government would create a register of childcare workers "as soon as possible" to provide extra scrutiny. "Acknowledging that there is work to create a national register of childcare workers, more needs to happen now," she said. "We will start building the Victorian register to give families an extra layer of checks and balances as soon as possible." Allan also announced the government would move to ban personal devices from childcare centres from 26 September. She said the ban could become a licence condition and could earn centres fines of up to AUD$50,000 if breached. The Victorian government has also commissioned an urgent review focused on immediate actions, which will be completed in about six weeks. "This will be a short, sharp piece of work that will focus on the immediate actions that we can take based on that body of work that is going on across state and territory jurisdictions," Ms Allan said. The review will consider whether CCTV should be installed in childcare centres. Health authorities yesterday recommended 1200 children linked to centres where Brown worked be tested for infectious disease out of caution. "The risk is low, but there's not no risk, which is why we're making this recommendation," Chief Health Officer Christian McGrath said today. Extra call-takers have also been brought on to assist families contacting a dedicated advice line, after reports of long delays. About 1300 families were supported on Tuesday. Allan said parents contacted about the investigation would be "suffering unbearable pain and uncertainty". She said immediate needs payments of AUD$5000 had been unlocked for directly affected families to cover time off work for parents, health appointments and other needs. - ABC
RNZ News
16 hours ago
- RNZ News
Qantas hit by cyber attack, 6 million customer records at risk of data breach
By Michael Janda and Kirsten Aiken , ABC A photo taken on August 20, 2023 shows the wing-tip of a Qantas Airbus A330 descending to land at Sydney´s Kingsford Smith Airport. Photo: WILLIAM WEST/AFP Qantas is warning a "significant" amount of customer data has likely been stolen from its records during a cyber attack. The airline has released a statement saying that, on Monday, it detected unusual activity on a third-party platform used by a Qantas airline contact centre. The airline said 6 million customers had service records in this platform. Qantas said it was investigating the proportion of the data that had been stolen, though it expected it would be "significant". An initial review confirmed the data included some customers' names, email addresses, phone numbers, birth dates and frequent flyer numbers, the airline said. "Importantly, credit card details, personal financial information and passport details are not held in this system," the statement read. "No frequent flyer accounts were compromised nor have passwords, PIN numbers or log in details been accessed." Qantas said the system had been quarantined and affected customers would be notified. Leading cybersecurity firm CyberCX has been working with Qantas over the past 24 hours to address the incident. A spokesperson for CyberCX has told ABC News the incident has all the hallmarks of an attack from the so-called Scattered Spider hacker group, which is targeting individual business sectors one by one. Most recently it has been known for attacks on the financial and insurance sectors. The CyberCX spokesperson said there were warnings from US authorities over the weekend that Scattered Spider intended to target the aviation sector. - ABC
