3 Nov 2022
26 September 2022
Cyber Security Incident
In November 2021 Frontier Software was the victim of a cyber-attack in which an unauthorised third party gained access to its corporate network and removed a subset of data on that network.
Frontier Software has conducted an investigation into the incident and carried out a comprehensive review of the impacted data.
We were able to inform some impacted clients (companies) and their individuals (employees) shortly after the incident occurred as their information was contained in easily identifiable structured files.
In respect of the remaining data, Frontier Software has undertaken a thorough manual review which is now complete. Through this process, personal information belonging to some current and former employees of our clients was identified as part of the data that was copied from Frontier Software's internal corporate network.
This information was part of a dataset that was unstructured in nature (that is, data that was not stored in an easily identifiable form).
This webpage is for people who have been contacted by their employer and informed that they may be impacted by this incident, or anyone who is concerned that they may have been impacted as their employer is or was a client of Frontier Software.
This webpage outlines the particular type of personal information involved, the steps taken to date and the steps that you can take to reduce the potential impact on your personal information.
What personal information was impacted?
Our investigations have shown that, with respect to impacted individuals, some of the following key types of personal information may have been included in the impacted data:
- Date of Birth
- Tax File Number
- BSB and Financial Account Number
- Superannuation Information
The precise information impacted varies across different organisations and individuals. For further details about whether you have been impacted and the specific information accessed, please contact Frontier Software by email at email@example.com.
Frontier Software has taken preventative measures to minimise the risk of misuse of this information. It is important to note that to the best of our knowledge this recently reviewed unstructured data has not been subject to any leaking on the dark web and we further believe it is no longer accessible to any unauthorised third parties.
What has been done to date
Frontier Software has worked with external cyber security and forensic specialists to assist our internal Frontier Software team to contain the incident, recover our systems, strengthen our security and investigate the breach.
Frontier Software has reported the incident to the Office of the Australian Information Commissioner (OAIC), the Australian Cyber Security Centre (ACSC), the Australian Federal Police (AFP) and relevant state police. We continue to liaise with these authorities and agencies whenever necessary.
Where a tax file number (TFN) has been accessed, we have advised the Australian Tax Office so they may apply additional appropriate security measures and monitor for any potential misuse of that TFN.
What you can do
If you are concerned about the potential misuse of your personal information, Frontier Software has arranged free support from IDCARE, Australia’s national identity and cybersecurity community support service.
To access IDCARE's services:
- find out if you are impacted by contacting Frontier Software at firstname.lastname@example.org or on 1300 007 446;
- if you are impacted, ask Frontier Software for a referral code to access IDCARE's services.
Alternatively, you may visit IDCARE’s Learning Centre for further information and resources on protecting your personal information https://www.idcare.org/learning-centre.
Please remain alert to any increased scam activity, especially email, and SMS or telephone phishing scams (i.e. fraudulent communications disguised as if to look like they come from an organisation you trust) and, in particular any such scam activity purporting to come from Frontier or your employer.
Further information on online safety, cyber security and helpful tips to protect yourself and respond to scams, identity theft and other online risks, can be found at the following government agency websites:
For further details about the data breach, whether you have been impacted and the specific information accessed, please contact Frontier Software at email@example.com.