AAPT today has confirmed that 3.5GB of customer data has been stolen by hacking group Anonymous. After Anonymous threatened to release 40GB of data from one of Australia’s largest internet service providers, AAPT confirmed in a press release that their servers had been compromised. The compromised data is suspected to be a backup of an Adobe Cold Fusion database accessed through a well known vulnerability.
A statement released by David Yulie, CEO of AAPT states ”It was brought to our attention by our service provider, Melbourne IT, at approximately 9.30pm last night that there had been a security incident and unauthorised access to some AAPT business customer data stored on servers at Melbourne IT.”
“AAPT immediately instructed Melbourne IT to shut down the servers when we were notified of the incident,” Mr Yuile said. Additionally, the it was stated that ”the servers on which the files were stored have not been used or connected to AAPT for at least 12 months.” AAPT will be contacting impacted customers as soon as possible. Full statement is available below
July 26 2012
STATEMENT FROM DAVID YUILE, CEO AAPT
IT WAS BROUGHT TO OUR ATTENTION BY OUR SERVICE PROVIDER, MELBOURNE IT, AT APPROXIMATELY 9.30PM LAST NIGHT THAT THERE HAD BEEN A SECURITY INCIDENT AND UNAUTHORISED ACCESS TO SOME AAPT BUSINESS CUSTOMER DATA STORED ON SERVERS AT MELBOURNE IT.
AAPT IMMEDIATELY INSTRUCTED MELBOURNE IT TO SHUT DOWN THE SERVERS WHEN WE WERE NOTIFIED OF THE INCIDENT.
PRELIMINARY FINDINGS SUGGEST IT WAS TWO FILES THAT WERE COMPROMISED AND THE DATA IS HISTORIC, WITH LIMITED PERSONAL CUSTOMER INFORMATION. FURTHER, THE SERVERS ON WHICH THE FILES WERE STORED HAVE NOT BEEN USED OR CONNECTED TO AAPT FOR AT LEAST 12 MONTHS.
WE ARE UNDERTAKING A THOROUGH INVESTIGATION INTO THE INCIDENT WITH MELBOURNE IT AND THE RELEVANT AUTHORITIES TO ESTABLISH EXACTLY THE TYPE AND EXTENT OF DATA THAT HAS BEEN COMPROMISED, HOW THE SECURITY INCIDENT HAPPENED AND WHAT FURTHER MEASURES ARE REQUIRED TO PREVENT ANY FUTURE INCIDENTS.
AAPT IS EXTREMELY CONCERNED ABOUT THIS INCIDENT AND IS TREATING THIS MATTER WITH THE UTMOST SERIOUSNESS.
AAPT WILL BE CONTACTING ANY IMPACTED CUSTOMERS AS SOON AS POSSIBLE.