Global company Manheim Auctions has fallen victim to a $30 million ransom demand from cyber criminals who have locked its computer system in Australia.
Global company Manheim Auctions has fallen victim to a $30 million ransom demand from cyber criminals who have locked its computer system in Australia.
Manheim, which has offices at Perth Airport and in Bibra Lake, auctions used vehicles, industrial machinery and sheds both traditionally and online.
The company also has operations across North America, Europe and Asia.
It was forced to temporarily stop trading in Australia following the cyber-attack, which occurred on February 14.
Manheim said it has now resumed its normal auction schedule over the past few weeks, through a combination of in-lane only and online auctions.
Consumer Protection said the event was similar to a previous cyber-attack on Toll Group two weeks earlier, disrupting freight and parcel deliveries.
Manheim has indicated that while it will not be paying the ransom, the personal data of its clients has not been compromised.
Consumer Protection’s WA ScamNet website has received 68 reports of ransomware or malware attacks since January 1.
Commissioner Penny Lipscombe said businesses should be alert and have effective security measures in place.
“Often the ransomware is downloaded by an employee who opens an attachment in a scam email or clicks on a link, giving the cyber criminals access to the computer system,” she said.
“The system is locked by the criminals and files encrypted, followed by a ransom demand to have the system unlocked.
“Of course, we recommend that companies do not pay the ransom as the criminals are likely to come back asking for more money.”
Ms Lipscombe said paying the ransom would give criminals added incentive to continue their practices.
She said all businesses should have their cyber security reviewed and updated with the latest virus software and firewalls to protect from malware.
“Staff also need to be trained not to automatically open attachments or click on links in emails, especially if the sender is unknown,” Ms Lipscombe said.
“Even when senders are known, staff should be vigilant as accounts may have been hacked.”
Consumer Protection said businesses should also keep a backup copy of their data in a safe place, disconnected from their computers and the internet.
The Federal Government’s StaySmartOnline website also contains advice for businesses.