“Latitude apologises to the impacted customers and is taking immediate steps to contact them,” the company said in a statement to the ASX.
Latitude has drawn criticism from experts on the breach of its systems. “Here is another case of credential theft after Medibank incident. It’s time for the Australian companies to think hard about password and identity management,” Dr Jabed Chowdhury,a lecturer at La Trobe University’s Cyber Security Program,said.
“Two steps even three steps password protection mechanism is the need of the time.”
Loading
Latitude said the details were stolen from service providers it uses. The company did not clarify further,but this is believed to refer to companies that provide corporate services to Latitude.
The company said it was continuing to respond to what it describes as a malicious and sophisticated cyberattack and has removed access to some customer-facing and internal systems.
Unusual activity was noticed on its network earlier this week,originating from a major vendor it uses.