17 September 2018
FREQUENTLY ASKED QUESTIONS
PERTH MINT EXPERIENCES DATA BREACH
Q: When did you detect the breach?
A: Our team first identified a potential breach on Wednesday, 5 September 2018.
Q: How did you detect the breach?
A: We conduct regular monitoring and security scans of our systems and sites. Our team was made aware of a potential breach on Wednesday, 5 September 2018 and we immediately launched a digital forensic investigation. The investigation indicates that the breach occurred as a result of data being taken from information held by a third party provider.
Q: What customer information has been accessed?
A: Our initial investigations suggested the breach related to the illegal accessing of personal information of 13 Depository Online customers. Our ongoing forensic investigation has now revealed the personal information of an additional 3,200 Depository Online customers have also been accessed through this breach.
In some cases, this included details such as the customers’ address, bank details or identification details.
The forensic investigation has confirmed that those customers’ gold investments held at The Perth Mint on their behalf are safe and secure.
Q: Is the breach over?
A: We have moved decisively and quickly to address this serious matter. Following the identification of the breach, we began a comprehensive investigation of our systems at the same time as confirming how this breach occurred.
What we do know is the personal information accessed comes from an old 2016 database.
Q: How many customers were affected?
A: This breach has impacted 3,200 Depository Online customers.
Q: Have you engaged external forensic investigators?
Q: How secure are The Perth Mint’s digital systems?
A: We are very confident in the integrity and security of our systems. This breach occurred as a result of data being taken from information held by a third-party provider.
Q: Are the investments of Perth Mint customers safe and secure?
A: Very safe. Notwithstanding the breach, which we sincerely regret, no investments have been compromised.
Q. What should customers do if they are concerned?
A: We would always recommend customers maintain good digital security practices, such as regularly changing their passwords (on any online service platform, not just The Perth Mint’s), using different and hard-to-guess passwords for each account, and being vigilant regarding any unusual activities on their accounts.
For more information, customers can call our dedicated hotline on +61 8 9421 7250.