Australian logistics and freight transport powerhouse Toll Group announced on Tuesday that cybercriminals using ransomware known as “Nefilim” attacked its systems last week.
A corporate server containing information on current and former Toll employees and customers was infiltrated.
The Melbourne-based company said it shut down its information technology systems to mitigate the risk of further infection and has not given in to demands to pay a ransom in exchange for being allowed access to its data again. Toll noted that the server is not a database for customers’ operational data.
Toll, ranked among the top 20 third-party logistics providers in the world by gross revenue, said it is still investigating what specific data the attackers downloaded. It said the unidentified attacker is known to publish stolen data on the so-called dark web rather than conventional online platforms.
It is the second time this year hackers have targeted Toll Group. On