Security News > 2021 > January > Digital burglars break into the Australian Securities and Investments Commission

Digital burglars break into the Australian Securities and Investments Commission
2021-01-25 18:01

The Australian Securities and Investments Commission has admitted one of its servers was accessed without sanction and may have been digitally pawed by miscreants.

The attack involved a server containing documents associated with Australian credit applications and the commission warned that "Some limited information may have been viewed by the threat actor." ASIC was at pains to add that it hadn't seen evidence of the forms and attachments being opened or downloaded.

The commission is working with Accellion and cyber security advisors to deal with the incident and notify those impacted.

An Accellion spokesperson told The Register that ASIC's incident was "Related to the previously reported and patched FTA vulnerability."

"Governments are not so easily swayed into paying big demands to criminals due to their lack of funds, not to mention the public audience. Such financial demands are also even more difficult to sign off, so the motivation behind government attacks are often linked to other factors and political motives."

"The key for government organisations to thwart such attacks is to keep abreast of the latest attack vectors and continually train staff to be aware of threats. No one piece of software can completely put a stop to the attacks, but such risk of an attack should never be undermined by those making the decisions." .


News URL

https://go.theregister.com/feed/www.theregister.com/2021/01/25/asic_accellion_breach/