The Australian human resources software firm PageUp has stated that cybercriminals installed exfiltration malware in the company’s system during a breach earlier this year, but concluded that no information was removed.
PageUp reported that the investigation into the data breach was conducted by the forensic analyst firm Klein & Co. The HR company previously reported that it considers its system now safe with all malware removed.
“A detailed forensic investigation on the PageUp security incident in May this year has concluded that while an attacker was successful in installing tools that could exfiltrate data, no specific evidence was found that data was exfiltrated,” PageUp stated.
The information that was exposed included client employee contact information, such as name, email address, physical address, and telephone number; along with employment information including employment status, company and title, and whether they were the registered contact for communications from PageUp.