EY investigating impact of cybersecurity breach of software provider
EY IS investigating the impact of a global cybersecurity breach of its file service MOVEit.
In a statement sent to The Business Times, EY said that it immediately launched an investigation into the use of the service and took urgent steps to safeguard data. This was after the software provider Progress confirmed a critical vulnerability in the MOVEit service on May 31.
“We have verified that the vast majority of systems which use this transfer service across our global organisation are secure and were not compromised. We are manually and thoroughly investigating systems where data may have been accessed,” said EY.
The consultancy’s investigation is still ongoing, and its priority is to communicate to those impacted as well as relevant authorities.
The story, first reported by the Australian Financial Review, stated that the Australian office of consultancy PwC was also impacted, as well as EY. Other organisations caught in the breach include the BBC, Shell and US federal agencies.
PwC Singapore, in response to queries by BT, said it is not a customer of MOVEit.
“Data security is a key priority for PwC, and we continue to put the right resources and safeguards in place to protect our network and help detect and prevent future attacks,” said a PwC spokesperson.
Copyright SPH Media. All rights reserved.
