In a staff memo, the company revealed that some hackers (names unknown) broke into the third-party app GoAnywhere, which was being used by Rio Tinto to manage its file transfers.
The culprits made off with a trove of sensitive data from the Rio Tinto cyber attack. The data consisted of both current and former employees, including payroll information like pay slips and overpayment letters.
The cyber attack did not affect Rio Tinto’s own network, as GoAnywhere is a cloud-based service provided by cybersecurity wizards Fortra.
However, the hackers have threatened to release the stolen data onto the dark web, potentially putting Rio Tinto workers at risk of identity theft and financial fraud.
Rio Tinto cyber attack and response
This incident is a red alert for the rising danger of cyber attacks! It’s time for companies to get their digital defenses up and running to safeguard their precious data.
The recent breach at Rio Tinto, where cybercriminals filched sensitive employee data via a third-party app called GoAnywhere, is just the tip of the iceberg.
In fact, several global giants and government bodies have recently reported cybersecurity incidents related to GoAnywhere, hinting at a potential vulnerability of the software that hackers are exploiting.
“Investigations now indicate a possibility that Rio Tinto data may be impacted,” read the memo, Reuters reported.
To date, none of the records described above have been released, and we still do not know if the cybercriminal group holds these records or not,” the memo stated.
In conclusion, Rio Tinto’s data breach serves as a reminder of the importance of cybersecurity in today’s digital age.
Companies must take proactive steps to protect their sensitive data and educate their employees on recognizing and responding to cyber threats.
By prioritizing cybersecurity measures, companies can minimize the risk of a breach and protect their employees and customers from the devastating impact of a cyber-attack.