Certis Security Australia suffers email breach

5 months ago AndyC

Physical security company Certis Security Australia has suffered a breach of its email system.

Certis Security Australia suffers email breach

Physical security company Certis Security Australia has suffered a breach of its email system.




Certis Security Australia suffers email breach










The company said no customer data is affected, but the personal information of some “employees and partners” has been accessed by a third party.

That information includes names, addresses, dates of birth, phone numbers and tax file numbers.

The company said while the activity on its email system was consistent with a “possible ransomware threat executed by a phishing email”, it did not say whether or not any ransom demand has been received.

It had “isolated and removed access to our email systems by the unauthorised actors to reduce the likelihood of damage to our systems or data loss.”

The company added that it has engaged a cyber security specialist to provide assistance.

“We have written directly to those employees and partners whom we have been able to identify, notifying them that their personal information had been affected by the unauthorised access, and to provide support and guidance on next steps,” it said in a breach notice.

The notice had been accessible overnight but returned a “too many redirects” error when attempting to view it today.

The company has also brought in IDCARE to help support anybody affected.



About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

Tags: , , , , , , , ,

More Stories

ACSC Issues Cisco ASA Device Alert

ACSC Issues Cisco ASA Device Alert

2 days ago AndyC
Australian businesses fast-track Microsoft cloud adoption amid cyber threats

Australian businesses fast-track Microsoft cloud adoption amid cyber threats

2 days ago AndyC
Zscaler introduces enhanced ZDX service for improved IT operations

Zscaler introduces enhanced ZDX service for improved IT operations

2 days ago AndyC
Exclusive: How Darktrace is tackling AI-driven cybersecurity

Exclusive: How Darktrace is tackling AI-driven cybersecurity

2 days ago AndyC
Record ransomware attacks in March 2024, report finds

Record ransomware attacks in March 2024, report finds

2 days ago AndyC
<div>Smarttech247 & SentinelOne launch AI-powered cybersecurity for SMEs</div>

Smarttech247 & SentinelOne launch AI-powered cybersecurity for SMEs

2 days ago AndyC

You may have missed

Major phishing-as-a-service platform disrupted – Week in security with Tony Anscombe

3 hours ago AndyC
Brokewell supports an extensive set of Device Takeover capabilities

Brokewell supports an extensive set of Device Takeover capabilities

6 hours ago AndyC
Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw

Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw

6 hours ago AndyC
Bogus npm Packages Used to Trick Software Developers into Installing Malware

Bogus npm Packages Used to Trick Software Developers into Installing Malware

12 hours ago AndyC

Friday Squid Blogging: Searching for the Colossal Squid

18 hours ago AndyC

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.