The Royal Commission has revealed its document management service provider, Law In Order, experienced a data breach in November last year, with 59 documents impacted.
The incident took place on Sunday, 22 November 2020, and saw Law In Order shut down a number of its key systems to conduct a complete forensic examination with the Australian Federal Police and the Australian Cyber Security Centre.
However, the Commission says there is no evidence that any sensitive personal information was accessed, published or misused in any way and all parties affected have been notified.
“Law In Order has assured the Royal Commission that remedial action has been taken to both protect the security of the affected information and mitigate any further risk arising from the incident to members of the public and organisations involved in the Royal Commission’s work.”
In addition, Royal Commission documents have been moved to new servers with additional security measures enforced.