Statement RE: ransomware cyber attack directed at Frontier Software | #malware | #ransomware | #education | #technology | #infosec



Yesterday afternoon (9 December 2021) the Government was able to confirm that significant personal information of SA Government employees had been stolen from Frontier’s systems.

This came after Frontier on the previous evening had confirmed for the first time that some State Government data had been stolen from their network, and published on the dark web.

I have been advised that the records of at least 38,000 employees were accessed and that up to 80,000 employees might have been accessed. The Government is currently working with Frontier to try and establish a more accurate estimate.

We can confirm that no Department for Education employees are affected.

The data accessed relates to employees of the South Australian Government only and contains the following identifying information:

  • First name
  • Last name
  • Date of birth
  • Tax file number
  • Home address
  • Bank account details
  • Employment start date
  • Payroll period
  • Remuneration
  • Tax withheld
  • Payment type (where applicable)
  • Lump sum payment type and amount (if applicable)
  • Superannuation contribution
  • Reportable fringe benefits tax amount (where applicable)

The Government’s priority is the safety and security of every employee affected by this incident, and we are doing all we can to provide assistance to impacted employees. Employees have been encouraged to take immediate steps to reduce their risk of fraudulent activity by:

  • Contacting your financial institution and monitoring statements for any unauthorised transactions. Consider adding additional security, including changing passwords and activating two-factor authorisation.
  • Being alert to any emails, text messages or phone calls from people requesting personal or account information, including access to devices. Do not respond to any requests until you have made your own enquiries with the organisation they claim to be from.

In addition, the South Australian Government has partnered with cybersecurity support service, IDCARE, to work with employees to develop a specific response plan and provide personal support throughout the process.

All public sector employees have been sent an email, which I am advised details the level of information that was accessed and provides information on how to access help and support.

In addition, employees can access further information at SA.GOV.AU where the government will provide regular updates as new information becomes known.

We are deeply disappointed that this breach occurred and are working closely with Frontier Software to investigate how this incident happened.

We apologise to all South Australian Government employees affected.

Background

Frontier Software is a human resources and payroll management company. The organisation provides services to more than 1500 public and private organisations around the world.

Frontier Software has been undertaking payroll services on behalf of the South Australian Government since 2001.



Source link