A CYBER security incident that has hit Toll Group is a ransomware attack, the company has confirmed.

The incident first came to light late last week.

“We can confirm the cyber security incident is due to a targeted ransomware attack which led to our decision to immediately isolate and disable some systems in order to limit the spread of the attack,” a spokesperson said.

“At this stage, we have seen no evidence to suggest any personal data has been lost. We’re continuing to undertake a thorough investigation and we’re working around the clock to restore normal services at the earliest opportunity.”


The spokesperson said they would continue to provide updates.

“We apologise for the disruption that some of our customers are experiencing. We’re working with relevant authorities and have referred the matter to the appropriate bodies for criminal investigation,” the spokesperson said.

“In the meantime, we’ll continue to work to our current processes in order to meet the needs of our customers.”

The spokesperson said as a result of their decision to disable certain systems after the cyber security threat, they were meeting the needs of customers via a combination of manual and automated processes across all global operations, although some delay and disruptions have been reported.

“For our parcels customers, all of our processing centres are continuing to operate including pick up, processing and dispatch albeit at reduced speed in some cases,” the spokesperson said.