EFTPOS Provider Smartpay Hit By Cyber Attack, Customer Data Stolen
Australia’s largest independent EFTPOS provider has suffered a “ransomware cyber incident” that resulted in the theft of customer information.
The “cybersecurity incident” took place on June 10 and involved the company’s systems in New Zealand.
Information relating to both Australian and New Zealand customers was stolen, Smartpay confirmed in a statement to the NZX, and cybersecurity specialists, CyberCX, are currently investigating.
“As we continue to respond to this incident, we are prioritising the safety and security of our systems and services to our customers,” Smartpay said.
“Understanding the contents and extent of that data theft is now the highest priority of our investigation.”
Smartpay said its customers could continue to use its terminals, and that it did not collect or store individual cardholder information.
It remains unclear what data was compromised in the attack.
Smartpay is the largest independently owned and operated EFTPOS provider in Australasia supporting over 37,000 merchants.
It processed over 78 million transactions worth a total of $2.7 billion last year.