On 7 March 2023, Certis Security Australia detected activity consistent with a possible ransomware threat, executed by a phishing email.
The email account of an employee was compromised, leading to a potential leak of data belonging to the employee and those within the network.
As part of our immediate response, we isolated the account and removed access to our email systems to reduce the likelihood of damage to our systems or data loss. We engaged with a specialist cyber security firm to undertake an in-depth forensic study, as well as reported the incident immediately to regulators, including OAIC, whom we have consistently been engaging since the breach.
Following our forensic investigations, we can now confirm that no Certis Security Australia customer data has been affected by the unauthorised access.
However, the investigation has also shown that some of our employees and resource contractors may potentially be affected by the unauthorised access and some of their personal information may have been accessed.
The personal information could include:
- First names and surnames
- Dates of birth
- Phone numbers
- Passport numbers
- Since the breach, we have written directly to employees and resource contractors whom we had been able to identify, notifying them that their personal information may have been impacted by the unauthorised access. We provided support and guidance on next steps.
- We have partnered IDCARE, Australia’s national identity and cyber support community service, who had made available a core team of Case Managers dedicated to this situation/breach.
- We have notified, engaged and worked closely with OAIC, who has and continue to provide valuable counsel and guidance.
What help is available
We strongly urge all our customers, employees and partners to remain vigilant and encourage them to seek independent advice from trusted sources, including the Australian Cyber Security Centre at cyber.gov.au.
Certis Security Australia has partnered with IDCARE, Australia’s national identity and cyber support community service.
If you wish to speak with one of their expert Case Managers, please complete an online Get Help form at www.idcare.org or call 1800 595160. When engaging IDCARE please use the referral code CEGR23.
If you have any other queries, you may also contact a member of our support team at firstname.lastname@example.org
Certis Security Australia has taken immediate action for this incident, notified affected users, conducted a thorough investigation to identify vulnerabilities and have since implemented security patches and enhanced our overall cybersecurity measures to prevent future incidents.