iTnews

Toll Group tight-lipped on alleged ransomware attack

By Ry Crozier on Feb 4, 2020 6:57AM
Toll Group tight-lipped on alleged ransomware attack

May have infected over 1000 servers.

Toll Group is staying tight-lipped on what appears to be a large-scale ransomware attack that has infected a sizable part of its IT infrastructure.

The logistics giant first reported that it was suffering from the effects of a “cyber security incident” on Friday last week.

That continued into this week with pickup and tracking systems, including its MyToll portal, offline. 

Read the latest: Toll Group hit by "new variant" of Mailto ransomware

A support line for MyToll reached by iTnews on Monday afternoon said it was “closed” and to email instead.

The company said in a statement that “as a precautionary measure, in response to a cybersecurity incident on Friday, Toll deliberately shut down a number of systems across multiple sites and business units.”

“Toll IT teams are working closely with global cyber security experts to resolve the issue,” it said.

“Our immediate focus is on bringing our systems back online in a controlled and secure manner.”

A source with knowledge of the incident told iTnews that the company has been hit with a sizable ransomware infection that is impacting global operations.

The source said that over 1000 servers had been infected, and that staff worldwide had been told to leave desktops and laptops switched off and disconnected from the corporate network.

The source said Active Directory, productivity and corporate VPN applications were among those infected and taken offline.

This appears to mesh with other reports of the incident sighted by iTnews, which claimed ransomware had infected systems in Toll’s main data centre; that the company had no IT systems operating; and that it was in the process of manually cleaning servers in an effort to bring them back online.

iTnews put its understanding of the incident to Toll Group’s media representatives on Monday. 

The company responded with a prepared statement that did not address any of the points.

It did not further respond to follow-up emails and calls made to several media representatives.

Toll Group’s IT operating model includes a sizable workforce outsourced to Infosys.

An Australian spokesperson for Infosys declined to comment on the incident, including whether its teams were involved in the recovery.

“As a matter of corporate policy, Infosys does not comment on client matters,” its spokesperson said.

Toll said it was “making progress” in its recovery efforts.

“Staying focused on customers remains at the forefront of Toll’s priorities as we restore our services and we sincerely apologise for any inconvenience caused,” it said.

“We want to thank our customers for their patience and support.”

Ransomware has been back in the spotlight in the early part of 2020 with high-profile attacks such as on foreign exchange firm Travelex, which took the best part of a month to recover from. Travelex has refused to say publicly if it paid the $9 million ransom or not.

Total losses from malware can be much more substantial, however. A Petya malware infection cost fellow logistics firm TNT Express $374 million, while staff at law firm DLA Piper put in 15,000 hours of overtime to recover from an encounter with the same piece of malware.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © iTnews.com.au . All rights reserved.
Tags:
attackcyberinfectionransomwaresecuritytoll group

Partner Content

5 essential digital transformation ideas
Promoted Content 5 essential digital transformation ideas
Alienated from your own data? You’re not alone
Promoted Content Alienated from your own data? You’re not alone
Top 5 Benefits of Managed IT Services
Promoted Content Top 5 Benefits of Managed IT Services
Security "mindset shift" needed to protect organisations
Promoted Content Security "mindset shift" needed to protect organisations

Sponsored Whitepapers

Planning before the breach: You can’t protect what you can’t see
Planning before the breach: You can’t protect what you can’t see
Beyond FTP: Securing and Managing File Transfers
Beyond FTP: Securing and Managing File Transfers
NextGen Security Operations: A Roadmap for the Future
NextGen Security Operations: A Roadmap for the Future
Video: Watch Juniper talk about its Aston Martin partnership
Video: Watch Juniper talk about its Aston Martin partnership
Don’t pay the ransom: A three-step guide to ransomware protection
Don’t pay the ransom: A three-step guide to ransomware protection

Events

  • iTnews Benchmark Awards 2022 - Finalist Showcase
  • 11th Annual Fraud Prevention Summit 2022
  • IoT Impact Conference
  • Cyber Security for Government Summit
By Ry Crozier
Feb 4 2020
6:57AM
0 Comments

Related Articles

  • Toll Group unveils year-long 'accelerated' cyber resilience program
  • US officials up pressure on firms, foreign adversaries over cyber attacks
  • US govt works to help top fuel pipeline operator after cyber attack
  • Nine Entertainment warns ransomware recovery 'will take time'
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Kmart Australia stands up consent-as-a-service platform

Kmart Australia stands up consent-as-a-service platform

NSW digital driver's licences 'easily forgeable'

NSW digital driver's licences 'easily forgeable'

Kmart Australia re-platforms ecommerce site to AWS

Kmart Australia re-platforms ecommerce site to AWS

NBN Co's 250Mbps and gigabit growth is finally clear

NBN Co's 250Mbps and gigabit growth is finally clear

Digital Nation

Case Study: PlayHQ leverages graph technologies for sports administration
Case Study: PlayHQ leverages graph technologies for sports administration
Metaverse hype will transition into new business models by mid decade: Gartner
Metaverse hype will transition into new business models by mid decade: Gartner
As NFTs gain traction, businesses start taking early bets
As NFTs gain traction, businesses start taking early bets
COVER STORY: From cost control to customer fanatics, AI is transforming the contact centre
COVER STORY: From cost control to customer fanatics, AI is transforming the contact centre
The other ‘CTO’: The emerging role of the chief transformation officer
The other ‘CTO’: The emerging role of the chief transformation officer
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.