Cyberattack on ameb.edu.au/shop
Dear Customer,
I am writing to inform you that the AMEB online shop at www.ameb.edu.au/shop has been the target of a cyberattack.
As a recent customer of the AMEB online shop, your personal information and credit card details may have been exposed. I’m sorry this has occurred.
We are advising any customer who made a purchase on the AMEB online shop between Wednesday, 12 October and Tuesday, 18 October, that they may be impacted. The information that may have been disclosed is your name, email, phone number, address and credit card information.
If you made your purchase via PayPal or ZIP, your credit card and payment credentials remain secure.
Your date of birth has not been exposed, as AMEB does not store this information.
What has happened
The AMEB website was subject to a cyberattack, which breached the security of our online shop database. The intention of the attack was to access customer credit card data.
When we identified the attack, we immediately shut down our site, removed all malicious code and disabled the immediate threat to customer data. This process has been successfully completed, and the AMEB online shop and customer database are now secure.
Please be aware that this attack specifically targeted the AMEB online shop at www.ameb.edu.au/shop. Other AMEB online systems, including online enrolment systems, SCORE and other state-based websites and enrolment platforms, have not been impacted by this attack and remain secure.
What you can do
We strongly recommend you have heightened awareness across your accounts, including:
- Contact your bank or credit card provider to advise that your credit card information may have been accessed during a recent transaction on the AMEB website.
- Change your password for your email and AMEB shop accounts.
- Look out for suspicious or unexpected activity across your online accounts, including your bank accounts. Make sure to report any fraudulent activity immediately to the related provider.
- Look out for contact from scammers who may have your personal information. This may include suspicious emails, texts, phone calls or messages on social media.
- Never click on any links that look suspicious, and never provide your passwords or any personal or financial information.
- If people call you posing as a credible organisation and request access to your computer, always say no.
What we are doing
We’re working with external cybersecurity professionals to review all our internet security and virus protection systems. We are also in contact with the relevant government authorities.
You can find the most up-to-date information at www.ameb.edu.au/cybberattack . If you have questions, please get in touch with us via 1300 725 709.
As always, AMEB will never contact you requesting your passwords or other sensitive information. AMEB does not store any customer credit card numbers or financial information.
Once again, I apologise that this has occurred. We take your privacy very seriously, and we will continue to work diligently to protect your personal information.
Regards,
Bernard Depasquale
Chief Executive Officer, AMEB Ltd
