Share this article on:
For the second time this year, threat actors have claimed a cyber attack on Australian property valuation firm Herron Todd White.
On 27 April, the BlackSuit ransomware gang claimed the Aussie scalp, posting details of the data exfiltrated to its darknet leak site.
“Data 279g – just paperwork, no trash,” a gang spokesperson said.
“20g sql_DB – customer and transaction databases.”
Now, the Meow Leaks ransomware gang has listed the Australian company on its site.
The threat group provided no details of the incident or what data was stolen but set prices for the purchase of the data.
However, speaking with Cyber Daily, Herron Todd White has said that the new incident appears to be a case of data duplication.
“We are aware of a claim made online by an unauthorised third party regarding our business,” Herron Todd White told Cyber Daily.
“We have ongoing cyber security monitoring in place and our investigation has provided no evidence that any unauthorised third party has accessed our systems, and this does not represent a new incident or compromise of our systems.
“Based on the nature of the claim and the data involved, the advice we have received from our external cyber security experts is that this is the same data set that was the subject of a cyber incident experienced in April 2024. At the time, we notified the regulator, affected individuals, and our customers, in line with our obligations.
“We are communicating with our staff, our customers and our stakeholders and will continue to maintain a proactive approach to monitoring and security with the assistance of external experts. If there is any reason to communicate further, we will update all our stakeholders as quickly as possible."
Cyber Daily will provide an update on this story as it develops.