(Reuters) – U.S. cybersecurity company Fortra said suspicious activity was identified in its GoAnywhere software nearly two months ago, a day after Rio Tinto said in a staff memo that personal data of some of its Australian employees may have been stolen.
The internal memo seen by Reuters on Thursday revealed salary information, such as pay slips and overpayment letters, of a small number of the mining giant’s Australian employees from January 2023 may have been seized by a cybercriminal group.
“On January 30, 2023, we became aware of suspicious activity in some instances of our GoAnywhere MFTaaS solution,” a Fortra spokesperson told Reuters in an email on Friday.
“We immediately took several steps to address this, including implementing a temporary outage of this service to prevent further unauthorized activity.”;
Fortra declined to comment on specific customers when asked about Rio Tinto, but said it was notifying potentially affected customers who may have been affected and was coordinating with the US Cybersecurity and Infrastructure Security Agency.
In recent weeks, a number of global companies and government institutions have reported cybersecurity incidents linked to GoAnywhere, a data transfer service provider owned by Minnesota-based Fortra.