Updated UnitingCare Queensland Media Statement On Recent Cyber Incident

Wednesday 5 May, 2021


On Sunday 25 April, UnitingCare Queensland (UCQ) was impacted by a cyber incident. As a result of this incident, some of the organisation's Digital and Technology systems have since been inaccessible.


The health and safety of the people we serve and our employees is our number one priority as we work to resolve this issue.


We can confirm that the external group claiming responsibility for this incident has identified themselves as REvil/Sodin.


As soon as we became aware of the incident, we engaged the support of leading external technical and forensic advisors. We also notified the Australian Cyber Security Centre of the incident and are continuing to work closely with them to investigate it.


Since the outset of the incident, we have been in pro-active regular contact with all relevant regulatory and Government departments.


Due to the recency of the incident, it is not possible to provide a resolution timeframe at this stage, however we can confirm that we are making significant progress towards securing, cleansing, and recovering our systems. Some systems have already been reinstated with cyber security testing now underway.


With the assistance of leading experts and advisors, we are conducting a thorough investigation into whether patient, client, resident or employee information has been breached. This investigation is continuing and we will continue to keep the people we care for updated in this regard, in addition to employees, regulators and other stakeholders.


Since the incident occurred, as part of our business continuity plan, back-up and downtime procedures have been in place to ensure continuity of our clinical and care services, and these procedures have been working very well.


At this point in time, we do not have any evidence that the health and safety of our patients, residents or clients has been in any way compromised as a result of this cyber incident.


All employees have continued to be paid on-time as usual, however if any pay issues do occur we have established an employee payroll hotline and rapid-payment solution to address these. We are regularly communicating with our employees about this process.


We have been working very hard to keep our people, patients, clients and residents informed as we work to resolve this incident. We remain strongly committed to providing regular relevant updates.


As previously advised, updates on this matter will be posted to the media section of this website (UnitingCare Queensland) as we gain greater clarity on the incident and the likely resolution timeline.


Please direct any media enquiries to:
Email:
media@ucareqld.com.au
Phone: 0412 674 013 / 0450 536 788


ENDS




Monday 26 April, 2021


On Sunday 25 April, UnitingCare Queensland (UCQ) was impacted by a cyber incident. As a result of this incident, some of the organisation's Digital and Technology systems are currently inaccessible.


As soon as we became aware of the incident, we engaged the support of lead external technical and forensic advisors. We also notified the Australian Cyber Security Centre of the incident and are continuing to work with them to investigate the incident.


Where necessary, manual back-up processes are now in place to ensure continuity of most services. Where manual processes cannot be implemented, services are being redirected or rescheduled accordingly.


Due to the recency of the incident, it is not possible to provide a resolution timeframe at this stage, however our Digital and Technology team are working to resolve this issue as swiftly as possible.


We are committed to keeping our people, patients, clients and residents informed and safe as we work to resolve this incident and will provide further relevant updates as new information comes to hand.


Updates on this matter will be posted to the media section of this website (UnitingCare Queensland) as we gain greater clarity on the incident and the likely resolution timeline.


ENDS