The Australian Securities and Investments Commission (ASIC) has been the subject of a cyber attack which it fears may have resulted in some information around applications for Australian credit licenses being viewed.
The regulator said that while it has not seen evidence of any Australian credit licence, application forms or any attachments having been opened or downloaded it has nonetheless disabled access to the affected server.
It said that the incident related to the Accellion software used by ASIC to transfer files and attachments and involved unauthorised access to a service which contained documents associated with recent Australian credit licence applications.
The regulator said it was working on alternative arrangements for submitting credit application attachments which would be implemented shortly and that no other ASIC technology infrastructure had been impacted or breached.
“ASIC is working with Accellion and has notified the relevant agencies as well as impacted parties to respond to and manage the incident,” it said.
“ASIC’s IT team and cyber security advisers engaged by ASIC are undertaking a detailed forensic investigation and working to bring systems back online safely.”