{"id":5957,"date":"2021-12-10T17:52:56","date_gmt":"2021-12-10T08:52:56","guid":{"rendered":"https:\/\/cyberenso.jp\/?p=5957"},"modified":"2022-02-02T17:56:07","modified_gmt":"2022-02-02T08:56:07","slug":"80000-australian-government-employees-impacted-by-ransomware-attack-on-frontier-software","status":"publish","type":"post","link":"https:\/\/cyberenso.jp\/en\/80000-australian-government-employees-impacted-by-ransomware-attack-on-frontier-software\/","title":{"rendered":"80,000 Australian government employees impacted by ransomware attack on Frontier Software"},"content":{"rendered":"\t\t
\n\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t

On\u00a0Thursday 9th of\u00a0December\u00a02021, South Australian government disclosed that the sensitive personal information belonging to up to 80,000 Australian government employees have been compromised following a ransomware attack that targeted the systems of Frontier Software who are responsible for the South Australian government\u2019s payroll software.<\/p>

\u201cThe ongoing forensic investigation and other response activities conducted by Frontier Software and CyberCX has now confirmed evidence of some data exfiltration from Frontier Software\u2019s internal Australian corporate environment,\u201d – Frontier Software<\/p>

Frontier Software have stated that the incident did not affect any of their client systems via their products and that the data exfiltration affected a particular segment of their systems. The only public department that wasn’t affected by the incident was the Department for Education as they don\u2019t use Frontier products. The data that has been compromised according to the South Australian government includes:<\/p>

  • First name<\/li>
  • Last name<\/li>
  • Date of birth<\/li>
  • Tax file number<\/li>
  • Home address<\/li>
  • Bank account details<\/li>
  • Employment start date<\/li>
  • Payroll period<\/li>
  • Remuneration<\/li>
  • Tax withheld<\/li>
  • Payment type<\/li>
  • Lump-sum payment type and amount<\/li>
  • Superannuation contribution<\/li>
  • Reportable fringe benefits tax amount<\/li><\/ul>

    The Conti ransomware gang are believed to be responsible for the incident as they released a posting to their leak site, although it has been removed since which could be an indication that the negotiations have ended. The recommended steps are all affected government employees are advised to keep a lookout for strange emails or SMS texts and that everyone should reset their passwords and activate two-factor authentication where possible. It has also been recommended that the affected individuals should closely monitor bank statements and account activity and report any suspicious transactions to the authorities.<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"

    On Thursday 9th of December 2021, South Australian government disclosed that the sensitive personal information belonging to up to 80,000 Australian government employees have been compromised following a ransomware attack that targeted the systems of Frontier Software who are responsible for the South Australian government\u2019s payroll software. \u201cThe ongoing forensic investigation and other response activities conducted by Frontier Software and CyberCX has now [\u2026]<\/span><\/p>\n","protected":false},"author":1,"featured_media":5962,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[220,6,10,12,2,7,1],"tags":[],"class_list":["post-5957","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-government-advisory","category-latest_news","category-latest_vulnerabilities","category-read_article","category-ce_news","category-by_country","category-uncategorized"],"acf":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/cyberenso.jp\/wp-content\/uploads\/2022\/02\/Picture1-6.jpg?fit=1377%2C893&ssl=1","_links":{"self":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts\/5957"}],"collection":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/comments?post=5957"}],"version-history":[{"count":6,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts\/5957\/revisions"}],"predecessor-version":[{"id":5965,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts\/5957\/revisions\/5965"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/media\/5962"}],"wp:attachment":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/media?parent=5957"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/categories?post=5957"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/tags?post=5957"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}