Tasmanian government confirms agencies impacted by VETtrak breach

A number of Tasmanian government agencies have been impacted by the cyber incident involving the vocational student management platform, VETtrak.

Owned by ReadyTech, VETtrak announced that it was suffering an outage impacting “multiple services” on 16 October.

By 17 October, the company had identified that a cyber attack had impacted the VETtrack student management platform.

You’re out of free articles for this month

Username or Email

Password Forgot password?

Keep me signed in on this device.

First Name

Last Name

Mobile

Organisation Type

By becoming a member, I agree to receive information and promotional messages from Cyber Daily. I can opt out of these communications at any time. For more information, please visit our Privacy Statement.

Need help signing up? Visit the Help Centre.

“We have isolated the platform as a precautionary measure and have engaged external experts to assist with managing the issue,” it said.

“Our technical teams and specialist experts are actively investigating the nature and cause of this issue and working diligently to restore services. Customer access to the platform will remain temporarily unavailable. We expect this to continue throughout Friday (17th October).

“We are working diligently to restore services as quickly and carefully as possible. We will keep you regularly updated on progress. The next update will be provided here at 1:00pm AEDT.”

Now, the Tasmanian government has revealed that a number of agencies that use VETtrak, such as the Tasmanian Department for Education, Children and Young People, the health department, and the fire and services department, have been impacted. It is unclear if the named departments are the ones impacted.

The government said there was currently no evidence that any student information had been accessed.

However, ReadyTech confirmed on 24 October that some documents had been published on the dark web.

VIEW ALL

“The company has today become aware that a cyber criminal has published a small number of documents containing personal information, originating from the platform,” adding that it urges that nobody attempt to access the platform.

“The company is responding to this recent development and is taking appropriate steps. The company has updated the Australian National Office of Cyber Security as well as other relevant government agencies.”

While not yet confirmed by Cyber Daily, an anonymous source has hinted that VETtrak had received a ransom note from the Lynx ransomware gang.

While there is no mention of VETtrak on the threat actor’s dark web leak site, Lynx has listed a company called OzSoft, a company that appears to have been the original owners of the VETtrak system.

OzSoft was sold in 2015 to California Investments and Simonds Family Office.

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.

You need to be a member to post comments. Become a member for free today!

newsletter

Be the first to hear the latest developments in the cyber industry.

Tasmanian government confirms agencies impacted by VETtrak breach

Daniel Croft

OUR PLATFORMS AND BRANDS

EVENTS AND SUMMITS

PODCASTS

LEARNING AND EDUCATION

MOMENTUM MARKETS NETWORK

LINKS

STAY CONNECTED

FOLLOW US ON