{{ propApi.closeIcon }}
Our industry
Our industry $vuetify.icons.faArrowRight
Housing industry insights Economics Data & forecasts Tailored research and analysis Advocacy & policy Advocacy Policy priorities Position statements Submissions News and inspiration Industry news Member alerts Media releases HOUSING Online
Business support
Business support $vuetify.icons.faArrowRight
Become an apprentice host Hire an apprentice Why host a HIA apprentice? Apprentice partner program Builder & manufacturer program Industry insurance Construction legal expenses insurance Construction works insurance Home warranty insurance Tradies & tool insurance Planning & safety solutions Building & planning services HIA SafeScan Safe Work Method Statements (SWMS) Solutions for your business Contracts Online HIA Tradepass Advertise jobs Trusted support & guidance Contracts & compliance support Professional services Industrial relations Member savings Toyota vehicles The Good Guys Commercial Fuel savings See all
Resources & advice
Resources & advice $vuetify.icons.faArrowRight
Building it right Building codes Australian standards Getting it right on site See all Building materials & products Concrete, bricks & walls Getting products approved Use the right products for the job See all Managing your business Dealing with contracts Handling disputes Managing your employees See all Managing your safety Falls from heights Safety rules Working with silica See all Building your business Growing your business Maintaining your business See all Other subjects COVID-19 Getting approval to build Sustainable homes See all
Careers & learning
Careers & learning $vuetify.icons.faArrowRight
A rewarding career Become an apprentice Apprenticeships on offer Frequently asked questions Study with us Find a course to suit you Qualification courses Learning on demand A job in the industry Get your builder's licence Continuing Professional Development (CPD) Find jobs
HIA community
HIA community $vuetify.icons.faArrowRight
Join HIA Sign me up How do I become a member? What's in it for me? Mates rates Get involved Become an award judge Join a committee Partner with us Our initiatives HIA Building Women GreenSmart Kitchen, bathroom and design hub Get to know us Our members Our people Our partners Support for you Charitable Foundation Mental health program
Awards & events
Awards & events $vuetify.icons.faArrowRight
Awards Awards program People & Business Awards GreenSmart Australian Housing Awards Awards winners Regional Award winners Australian Housing Award winners 2024 Australian Home of the Year Enter online Industry events Events in the next month Economic outlook National Conference Events calendar
HIA products
HIA products $vuetify.icons.faArrowRight
Shop @ HIA Digital Australian Standards Contracts Online Shipping & delivery Purchasing T&Cs See all Products Purchase NCC 2022 Building codes & standards Economic reports Hard copy contracts Guides & manuals
About Contact Newsroom
$vuetify.icons.faTimes
$vuetify.icons.faMapMarker Set my location Use the field below to update your location
Address
Change location
{{propApi.title}}
{{propApi.text}} {{region}} Change location
{{propApi.title}}
{{propApi.successMessage}} {{region}} Change location

$vuetify.icons.faPhone1300 650 620

HIA response to MOVEit Transfer software breach

Frequently asked questions

Regional news

HIA response to MOVEit Transfer software breach

Frequently asked questions

Regional news
HIA has been notified that some of our customer information shared in 2016 with a third-party consulting firm, Price Waterhouse Coopers (PwC), has been impacted by a cyber incident involving their use of MOVEit File Transfer software. As a result of the incident, some personal information of HIA’s customers has been exposed.

HIA did not share any financial, credit or accounting information. It is important to note that HIA’s own systems were not impacted by the incident.

Impacted individuals will be contacted with advice and support. If you have been impacted, you will receive this advice via email or by letter.

Find some frequently asked questions below

Publication
Incident and background
{{ propApi.expandedIcon }} {{ propApi.collapsedIcon }}
1. Why did I receive a notification letter?

HIA work with PwC, who provide a variety of professional services, including assurance and consulting advice and have historically utilised the MOVEit Transfer software to transfer data related to their engagement. A previously unknown security vulnerability in the MOVEit Transfer software meant that a third party was able to download files related to HIA and PwC’s engagement, and some of those files included your personal information. 

Given the nature of your information that was accessed, PwC have sent you a notification letter with details of the incident and important information about actions you can take.

2. What is the MOVEit incident?

The MOVEit Transfer software application is used by a significant number of organisations worldwide to securely send and receive data. Up until recently, PwC Australia used the MOVEit Transfer software application to transfer or receive information for some of its engagements with its clients. A previously unknown security vulnerability in the MOVEit Transfer software meant that a third party was able to download files and information stored in the application. PwC Australia is one of the many organisations worldwide that has been impacted by the incident.

More detail about the incident is available on MOVEit’s website.

3. Whose fault is this?

A group known as Cl0p has claimed responsibility for the attack on the MOVEit Transfer software and the disclosure of the information obtained. Cl0p exploited a security vulnerability in the third party file transfer software called MOVEit Transfer.

More detail about the incident is available on MOVEit’s website.

4. Who stole the data?

A group known as Cl0p has claimed responsibility for the attack on the MOVEit Transfer software and the disclosure of the information obtained. However, as is common in data breaches, we do not know who else may have accessed the information which has been published since the incident.

 
Publication
What do I need to do?
{{ propApi.expandedIcon }} {{ propApi.collapsedIcon }}
5. What does this mean for me?

HIA did not upload any of your financial, credit or accounting records to MOVEit Transfer as part of PwC’s engagement with HIA and PwC has not identified any such information in their investigation.

Further, to our knowledge no individual has been the victim of identity theft or fraud. However, we recommend that you continue to monitor your data and personal information and be alert to any suspicious activity, i.e possible fraudulent emails, letters, phone calls and SMS messages. Please review the tips provided to you in your notification letter.

Publication
Queries about data
{{ propApi.expandedIcon }} {{ propApi.collapsedIcon }}
6. Could more of my data be leaked?

After becoming aware of the incident, PwC switched off the MOVEit Transfer software and promptly notified HIA of its documents which were affected.

7. How do I protect myself from this happening again?

Unfortunately Data breaches are on the rise globally. We suggest that you continue to monitor your personal information and be aware of suspicious activity.

Publication
Support available
{{ propApi.expandedIcon }} {{ propApi.collapsedIcon }}
8. PwC in partnership with IDCARE

PwC has partnered with IDCARE, Australia’s national identity and cyber support community service.

They have expert Case Managers who can work with you in addressing concerns in relation to personal information risks in instances where you think your information may have been misused. IDCARE’s services are at no cost to you.

If you wish to speak with one of their expert Case Managers please complete their online form.

Get Help form

Impacted members should have received a notification letter/email with a referral code. When engaging IDCARE please use the referral code included on your notification letter/email.

Please note that IDCARE is a separate entity independent of PwC and HIA. They are a registered Australian charity that specialises in identity security remediation and support. Please refer to IDCARE for further information and a copy of their Privacy Policy.

If you believe the data incident is causing you to suffer distress, try to reach out to family or friends or to one of the below support services for help:

Visit: Beyond Blue
Call: 1300 224 636

Visit: Lifeline
Call: 13 11 14

Note: If you believe you are at physical risk, please call emergency services (000) immediately.

9. Who is IDCare and what do they do?

IDCare is Australia’s national identity and cyber support community service. They have expert Case Managers who can work with you in relation to personal information risks in instances where you think your information may have been misused. IDCARE’s services are at no cost to you. If you wish to speak with one of their expert Case Managers please complete their online form.

IDCARE is available Monday to Friday 8am to 5pm AEST (excluding public holidays).

Get Help form

When engaging IDCARE please use the referral code included on your notification letter/email.

IDCARE services include:

  1. Specialist identity and cyber security case management that works with individuals to assess their unique risks and develop personalised response plans.
  2. IDCARE specialists include counselors and social workers as well as cyber technicians. In addition to pragmatic support, IDCARE can also extend Technical remediation support provided by cyber technicians, extended by IDCARE where it is deemed appropriate. IDCARE’s case managers are trained to anticipate, identify and respond to instances where specialist treatment is needed.
  3. Case management is confidential and each individual is provided their own unique client ID which limits what IDCARE needs to collect in order to assist individuals.
Breaking news
View all $vuetify.icons.faArrowRight
24 May
Boosting apprentice numbers must be the key focus of review

“The number of new apprentices entering the building industry will not be sufficient to fill the labour supply gap that will prevent the industry reaching the Housing Accord’s target of building 1.2 million new homes over the next five years,” HIA Executive Director, Future Workforce, Geordan Murray said today.

24 May
Are you interested in doing Government funded building work?

You may be aware that the Federal Government has committed to building 1.2 million homes over the next 5 years. To support this commitment, the Federal Government, through Housing Australia, is funding residential building work.

24 May
Jurisdiction of the Federal Safety Commissioner

Are your interested in tendering for federally funded government building work? Use HIA’s flowchart to help you determine if you are required to comply with the Federal Work Health and Safety accreditation scheme.

23 May
Home building hotspots in North Queensland revealed

“There were five areas in North Queensland that were identified as home building and population hotspots,” stated HIA Executive Director - North Queensland, Peter Fry.