Iress reassures users after cyber incident
Major planning software provider, Iress has sought to reassure advisers that it has contained an incident involving unauthorised access to the Iress code repository.
The company said that on Saturday, 11 May it “detected an unauthorised accessing of Iress’ user space on GitHUB, a third-party code repository platform which manages software code before it goes live in production on a separate platform.
It said Iress does not store client information on GitHUB.
“Iress restricted access to GitHub immediately upon discovery and commenced a rapid investigation. There is no evidence that client data has been compromised as a result of this issue. There is also no evidence that Iress’ production or client software has been compromised,” he company said.
“Iress has now commenced a process of strengthening access and security protocols out of an abundance of caution.”
“We do not anticipate any disruption to our business or our clients’ ability to use our software and systems.”
“Iress is making this announcement in the interests of transparency and keeping all stakeholders informed. The Company takes information security extremely seriously and has notified relevant authorities.”
It was only a matter of time! They may not have got to the main database but you can bet on it, the baddies will be back
Which sort of raises the question. ASIC now insists that licensees instruct their advisers to hold client data on electronic files. They don’t trust paper.
It was always about easier access for investigators acting on behalf of ASIC. You know, the old 10 year look-back lot.
Almost every advisor with an electronic CRM is hitched up to a database external to their business, and what happens with that database is totally out of our control.
Given our current digital war, how is that in the best interests of our clients, as no organisation, no matter how big the digital security budget, can guarantee the security of data from well resourced hackers. That’s just the nature of the beast.
I wonder if I can still buy 5 x 3 cards and an indexed box