Sign Up
..... Australian Property Network. It's All About Property!
Categories

Posted: 2023-03-23 11:08:48

Personal data of Rio Tinto Ltd's former and current employees may have been stolen by a cybercriminal group, according to a staff memo.

Payroll information — such as pay slips and overpayment letters — belonging to a small number of employees from January 2023 had possibly been seized by the group, the memo showed.

"Investigations now indicate a possibility that Rio Tinto data may be impacted," it said.

The cybercriminal group threatened to release the data onto the dark web and investigations into the incident were ongoing, the mining giant added.

"To date, none of the records described above have been released, and we still do not know if the cybercriminal group holds these records or not," the memo said. 

The stolen data relates to an attack on GoAnywhere — a managed file transfer software offered by cybersecurity firm Fortra — which also provides its services to Rio.

As GoAnywhere is a cloud-based vendor, there is no operational impact or risk to the Rio Tinto network, the memo said.

A host of global firms and government institutions have reported cybersecurity incidents linked to GoAnywhere over the past few weeks.

View More
  • 0 Comment(s)
Captcha Challenge
Reload Image
Type in the verification code above