Share this article on:
The Australian port operator has released a statement on the hack: “Files were accessed by the unauthorised third party.”
Following the full shutdown of its Australian port operations, DP World Australia has released an in-depth statement on the incident and its investigations so far.
According to DP World, while no ransomware has been detected and no data encrypted, it has confirmed that some data was exfiltrated during the incident.
“DP World Australia’s investigation has confirmed that the incident was confined to the Australian operations and did not impact any other markets where DP World operates,” a spokesperson said in a statement. “It also confirmed that no ransomware was found or deployed within the DP World Australia network (no ransomware executables, no encrypted files and no ransom demands).”
“Regrettably, DP World Australia can confirm that some of its files were accessed by the unauthorised third party, and a small amount of data was exfiltrated from the DP World Australia network. While the investigation has shown that customer data was not affected, some of the impacted data includes the personal information of current and previous employees of DP World Australia.”
DP World Australia has not detailed what data was affected or the number of impacted individuals.
The incident took place on 10 November, when DP World Australia first became aware of unauthorised access to its network. In order to contain the incident, the company immediately shut down its networks, which also led to the shutting down of “land-side port operations”.
Operations were restored on 13 November, with the full backlog cleared by 20 November.
At the moment, DP World Australia is contacting impacted individuals and has set up a cyber response team to support those whose data has been compromised. The company is offering support through its employee assistance program, alongside the services of IDCARE and Equifax.
DP World Australia has also been working closely with the Australian cyber security coordinator, the Australian Cyber Security Centre, AFP, and Home Affairs, alongside the relevant ministers.
“As an important part of Australia’s logistics and supply chain, we acknowledge the impact of this cyber security incident,” said Nicolaj Noes, executive vice-president for Oceania, Asia-Pacific region at DP World, in a statement.
“We would like to thank our customers, employees and our stakeholders for their patience and support during the incident and the investigation,”
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.