Share this article on:
AHRI has sent out emails warning of malware that could have been spreading fake browser updates.
The Australian Human Resources Institute (AHRI) has revealed that it has fallen victim to a cyber attack.
AHRI sent emails to its customers this morning, 9 February, warning of a “security incident”. The incident appears to have happened this month, when an unidentified threat actor gained access to AHRI’s website via the site provider.
“In February 2024, an unauthorised person/s accessed the website via AHRI’s website provider and installed a script and malware on the AHRI website, which were active between 1 and 2 February 2024,” AHRI said in an email signed by chief executive Sarah McCann-Bartlett.
“AHRI’s website provider informed us the malware may have prompted site visitors to download a fake web browser update. If you visited the website between 1 and 2 February 2024, your device may be affected. Note that if you visited the website using a mobile phone, you would not have been affected.”
AHRI said it has engaged “forensic IT experts” to lead the investigation into the incident. It is not yet known if any data was accessed during the incident. For now, AHRI recommends that its customers run virus scans on any PC used to access its website.
According to ARHI’s website provider, the institute’s website is now safe to use.
“I am sincerely sorry about this incident,” McCann-Bartlett said in the email. “We take cyber security very seriously, and I am working closely with AHRI’s executive team and internal and external IT specialists to ensure our systems are as secure as they need to be and as you would expect them to be.”
Cyber Daily has reached out to AHRI for further details.
Comments powered by CComment