Australian transport giant Toll Group has revealed the extent of data theft it has suffered after its second bout of ransomware this year, following a January infection. “Our ongoing investigations have established that the attacker has accessed at least one specific corporate server. This server contains information relating to some past and present Toll employees, and details of commercial agreements with some of our current and former enterprise customers,” the company said on Tuesday. “The server in question is not designed as a repository for customer operational data.” Toll said some of the accessed data was exfiltrated and that it is currently determining which data that was. “The attacker is known to publish stolen data to the ‘dark web’. This means that, to our knowledge, information is not readily accessible through conventional online platforms,” Toll added.
Source: ZD Net