.svg){kind=small}
.png){kind=icon}
Notification of Phishing Attempt
Statements
Friday, 18 July 2025
On Thursday, 17 July 2025, Standards Australia identified an incident where a Standards Australia email address was used to send approximately 100,000 emails in an apparent phishing attempt to external email accounts not connected to us. Only one recipient matched our contact records, which appears to be coincidental. Early analysis currently shows open rates of these emails were around 0.05%.
This issue occurred through a third-party system we use for automated notifications. We have treated this incident very seriously. As soon as we became aware that this had occurred, we took steps to stop the activity and secure our system. We continue to conduct system checks to ensure the issue has been contained. At this stage, there is no evidence of any impact to our internal systems, staff, customer or contributor data, or other personal information held by Standards Australia. Our IT security team is continuing to investigate and ensure our system integrity is maintained.
We regret this has occurred and are committed to protecting the data of our community and customers. We will continue to take the necessary steps to strengthen the security of our systems. We will provide updates if any new significant information emerges.
This is a timely reminder that cyber threats are a persistent and growing challenge in Australia and that every person and company should be vigilant in a personal and professional context.
Friday, 18 July 2025
On Thursday, 17 July 2025, Standards Australia identified an incident where a Standards Australia email address was used to send approximately 100,000 emails in an apparent phishing attempt to external email accounts not connected to us. Only one recipient matched our contact records, which appears to be coincidental. Early analysis currently shows open rates of these emails were around 0.05%.
This issue occurred through a third-party system we use for automated notifications. We have treated this incident very seriously. As soon as we became aware that this had occurred, we took steps to stop the activity and secure our system. We continue to conduct system checks to ensure the issue has been contained. At this stage, there is no evidence of any impact to our internal systems, staff, customer or contributor data, or other personal information held by Standards Australia. Our IT security team is continuing to investigate and ensure our system integrity is maintained.
We regret this has occurred and are committed to protecting the data of our community and customers. We will continue to take the necessary steps to strengthen the security of our systems. We will provide updates if any new significant information emerges.
This is a timely reminder that cyber threats are a persistent and growing challenge in Australia and that every person and company should be vigilant in a personal and professional context.
