The Australian Securities and Investments Commission (ASIC) has revealed that one of its servers has been accessed by an unknown threat actor following a security breach.
ASIC is an independent Australian government commission tasked with the regulation of insurance, securities, and financial services, as well with consumer protection as Australia's national corporate regulator.
The commission also maintains a searchable database of business information for several types of organizations. The stored data includes both current and historical info including but not limited to addresses and office locations.
As ASIC disclosed the incident that took place on January 15th, 2021, is related to Accellion software the commission uses to transfer information.
"It involved unauthorised access to a server which contained documents associated with recent Australian credit licence applications," ASIC
said.
"While the investigation is ongoing, it appears that there is some risk that some limited information may have been viewed by the threat actor.
"At this time ASIC has not seen evidence that any Australian credit licence application forms or any attachments were opened or downloaded."
