Australian freight logistics company Toll Group has confirmed that it has been forced to disable a number of IT systems as it continues its recovery from a cyber attack that first came to light on January 31st.
The company confirmed that it had suffered disruption to its IT network as the result of a targeted ransomware attack, which led Toll to isolate and disable some of its systems in order to limit the spread of the infection.
“At this stage, we have seen no evidence to suggest any personal data has been lost. We’re continuing to undertake a thorough investigation and we’re working around the clock to restore normal services at the earliest opportunity. We’ll continue to provide updates as we securely bring our systems back online,” the company said, in a statement.
“We apologise for the disruption that some of our customers are experiencing. We’re working with relevant authorities and have referred the matter to the appropriate bodies for criminal investigation. In the meantime, we’ll continue to work to our current processes in order to meet the needs of our customers.”
Since discovering the ransomware attack on January 31st Toll has been working to mitigate its impact and ensure customers can continue to access services, to the extent of introducing manual systems where required to maintain operations.
“We’re working around the clock to have the relevant systems back online as soon as possible. While it’s an unfortunate situation, particularly for our customers, we’re committed to ensuring the security of our systems before we resume normal online operations,” the company added.
“We’re working with relevant authorities and have referred the matter to the appropriate bodies for criminal investigation. In the meantime, we’ll continue to work to our current processes in order to meet the needs of our customers.”