Update 26th July 2024
IMPORTANT UPDATE FROM INGLEBURN RSL CLUB – 26/07/2024
We write to provide you with an update on the cyber incident that impacted clubs and one of our former external service providers identified on 29 April 2024, which has impacted Ingleburn RSL Club.
We have engaged in regular discussions with the service provider to seek further information to assist us with our investigations and assessment of the incident. We have now received further substantial information to assist with our understanding of and investigations into the incident.
Based on the further information received and our investigations to date, it is important to note that:
- the individual believed to be behind the incident is known and has been arrested and charged, with their assets seized;
- the background circumstances of the matter suggest the individual’s motivations were not to misuse any personal information;
- the website that initially allowed limited information to be viewed is no longer accessible.
We also understand that only limited information was viewable on the offending website. Importantly, this did not include any identity information such as drivers’ license details or other sensitive information.
The above matters support the view that your information is not at risk.
Ingleburn RSL Club has and is undertaking internal steps to reduce the risk of similar future incidents. This includes reviewing our internal IT security and data policies as well as enhancing cyber security measures within our environment.
As always, we continue to ask that you please remain vigilant and monitor for any suspicious activity, including any communications by phone or email requesting for information or payments. Further information about online safety, cyber security and other helpful tips can be found at the Australian Cyber Security Centre website or the ACCC’s Scamwatch website.
We thank you for your patience and cooperation during this pressing and disruptive time.
We also want to take this opportunity to apologise for the stress this incident may have caused. We greatly value and appreciate the support and feedback we have received from our members throughout this process.
If you have any questions, please contact us at Ingleburn RSL Club via email on info@ingleburnrsl.com.au or here via our website.
Kind regards,
Glenn Cushion
Chief Executive Officer
Update 14th June 2024
IMPORTANT UPDATE FROM INGLEBURN RSL CLUB – 14/06/2024
Dear Valued Members and Guests,
We provide an update on the cyber incident suffered by one of our external service providers and the progression of investigations into the incident.
Investigations Update
As mentioned in our previous update, we immediately conducted an internal investigation of our IT systems. Our internal IT systems have not been impacted.
We have been in regular contact about the progression of the investigations led by the impacted provider. This includes identifying any steps required of us to assist those investigations.
The investigations have progressed and are prioritising steps to identify the data that may have been impacted so we can consider the personal information that may be involved in the incident.
However, the process is complex and is unfortunately taking significantly longer than expected. We are making every effort to progress investigations expeditiously.
Law Enforcement Update
We understand the impacted provider has engaged with the Office of National Cyber Security, NSW Police and the Australian Federal Police of the incident.
A person was arrested by Cybercrime Squad detectives and charged with blackmail, amongst others, in connection with the incident. The National Cyber Security Coordinator also released a statement, which can be accessed here.
Enforcement action against the person arrested has progressed and police investigations are ongoing.
Separately, we are working with the Office of the Australian Information Commissioner in respect of the Incident.
Additional Information
The impacted provider has stressed the importance of exercising caution when reviewing various statements and comments made by third parties about the incident. It has indicated that a number of statements and representations made externally are based on uninformed speculation.
We continue to ask that you remain alert to suspicious activity or communications, including any communications purporting to come from us. Please do not respond to or continue with any suspicious communication until you have taken steps to verify it is legitimate using trusted and reliable information.
Please also let us know immediately if you see or receive anything suspicious, particularly if it is said to originate from us. If you believe you have become a victim of cyber-crime, please report the incident on the Australian Cyber Security Centre Website at www.cyber.gov.au.
Further information about online safety, cyber security and other helpful tips can be found at the Australian Cyber Security Centre website or the ACCC’s Scamwatch website.
Way Forward
We will continue to take all reasonable and appropriate steps to progress investigations into this incident as expeditiously as possible. Our priority is to identify the information and individuals that may have been impacted.
Going forward, we will provide our updates to you directly via SMS or email if our investigations indicate that you may be directly impacted by the incident.
We thank you for your patience and ongoing understanding during this time.
If you have any further questions or concerns, please contact the Club at info@ingleburnrsl.com.au or here via our website.
Kind Regards,
Glenn Cushion
Chief Executive Officer
Update 3rd May 2024
IMPORTANT UPDATE FROM INGLEBURN RSL CLUB – 03/05/2024
To our members and guests,
We have been informed overnight that a person has been arrested by Cybercrime Squad detectives and charged with blackmail in connection with the incident that has impacted the service provider. The National Cyber Security Coordinator has also released a statement, which can be accessed here.
Police investigations are ongoing and we are continuing to work with the impacted provider accordingly. We will provide a further update once we hear more.
We continue to ask you to remain alert to suspicious activity or communications, including any communications purporting to come from us. Please do not respond to or continue with any suspicious communication until you have taken steps to verify it is legitimate using trusted and reliable information.
If you have any questions or concerns, please contact us here
Regards,
Glenn Cushion,
Chief Executive Officer.
Ingleburn RSL Club
Important Notice from Ingleburn RSL Club
To our members and guests,
On 29 April 2024, Ingleburn RSL Club was informed that one of our external service providers suffered a cyber security incident. Our internal IT systems have not been impacted.
The impacted provider supplied technology and services to assist us with our membership and promotions processes. We no longer use this service provider.
We have been informed that data held by the provider has recently been taken and posted onto the internet.
We understand that the provider has notified the Office of the Australian Information Commissioner, and engaged with the Office of National Cyber Security, NSW Police and the Australian Federal Police of the incident.
We have commenced an investigation into the incident. We are working with the provider to identify the extent to which any data relating to Ingleburn RSL Club, including any personal information may be involved.
We will provide a further update as our investigations progress.
At this stage we ask you to remain alert to suspicious activity or communications, including any communications purporting to come from us. Please do not respond to or continue with any suspicious communication until you have taken steps to verify it is legitimate using trusted and reliable information.
Please also let us know immediately if you see or receive anything suspicious, particularly if it is said to originate from us. You can report this to info@ingleburnrsl.com.au. If you believe you have become a victim of cyber-crime, please report the incident on the Australian Cyber Security Centre Website at www.cyber.gov.au.
Further information about online safety, cyber security and other helpful tips can be found at the Australian Cyber Security Centre website or the ACCC’s Scamwatch website.
We deeply regret any distress, concern or inconvenience this has caused.
If you have any questions or concerns, please contact info@ingleburnrsl.com.au.
Regards,
Glenn Cushion,
Chief Executive Officer.
Ingleburn RSL Club
02 May 2024
Ingleburn RSL Club Cyber Incident FAQs
What happened?
Ingleburn RSL Club has been informed that one of our former external service providers suffered a cyber security incident. Our internal IT systems have not been impacted.
We have immediately commenced investigations into the incident and are working with the impacted provider to learn more. We are progressing these investigations as a priority.
What is a cyber incident?
A cyber incident is an unwanted or unexpected cyber event that impacts IT systems or data held on those systems and may compromise business operations.
Is this a ransomware incident?
To avoid impacting or compromising the ongoing investigations, we cannot provide further specifics about the type of incident at this time.
If you are concerned, are aware of any suspicious activity or believe you are a victim of a cyber-crime, please report the incident to the Australian Cyber Security Centre website at cyber.gov.au.
When did Ingleburn RSL Club become aware of this issue?
Ingleburn RSL Club became aware of the issue on Monday, 29 April 2024 when it was informed by the impacted provider of the incident. We continue to actively engage with the impacted provider to learn more about the incident.
Why/How did this happen?
As the incident did not impact our systems, we are engaging with the impacted provider to learn more about the cause of this incident. To avoid impacting or compromising any ongoing investigations, we cannot provide further specifics at this time.
Who is responsible for the cyber incident?
As the incident did not impact our systems, we are engaging with the impacted provider to learn more about the perpetrators. To avoid impacting or compromising any ongoing investigations, we cannot provide further specifics at this time.
Who is / what is the nature of the impacted former external service provider?
Ingleburn RSL Club received technology and services to assist us with our membership and promotion processes. We no longer use this service provider.
Why is it taking so long for Ingleburn RSL Club to investigate the cyber incident?
Ingleburn RSL Club commenced investigations as soon as it was informed of the incident on 29 April 2024. As our internal IT systems have not been impacted, we are working with the impacted provider to learn more about its investigations. Our understanding of the incident will be broadly reliant on the information provided by the impacted provider.
These investigations are ordinarily complex and take time.
What has Ingleburn RSL Club done in response to the cyber incident?
Ingleburn RSL Club immediately conducted an internal investigation of its IT systems and has sought further information from the impacted provider to obtain further information about the incident.
We otherwise understand that the impacted provider has notified the Office of the Australian Information Commissioner and engaged with the Office of National Cyber Security, NSW Police and the Australian Federal Police of the incident.
As a member, how does this affect me?
Our systems, venues and operations have not been impacted and are operating as normal.
What about my personal information held by Ingleburn RSL Club?
Ingleburn RSL Club and the impacted provider are investigating as a priority the extent to which any personal information held by Ingleburn RSL Club has been subject to any unauthorised access or unauthorised disclosure. We will provide an update once we learn more as these investigations progress.
When will I know if my personal information has been accessed or stolen?
We will provide an update once we learn more as these investigations progress.
What can I do to protect myself?
There are some proactive steps you can take to protect yourself. At this stage, it is important to remain alert to scam activity, including any scam activity purporting to come from us.
If you believe you have become a victim of cyber-crime or are aware of any suspicious activity, please report the incident to the Australian Cyber Security Centre Website at cyber.gov.au.
I have a complaint or very personal reason to be concerned about this cyber incident, who can I contact to discuss this privately?
If you require further information or need assistance, please feel free to contact Ingleburn RSL Club via email at info@ingleburnrsl.com.au or by clicking here