The Office of the Australian Information Commissioner (OAIC) has advised IT managed service providers (MSPs) which may be affected by a global cybersecurity hack to take steps to ensure Australians’ personal information is being safeguarded.

The Australian Cyber Security Centre (ACSC) has provided advice for managed service providers and their customer organisations about the hack and how to respond.

If Australians’ personal information may have been compromised, managed service providers must carry out an assessment to determine whether there has been an eligible data breach. This assessment should be done as quickly as possible and generally within 30 days.

MSP customers should contact their MSP to ensure they are doing everything necessary to investigate whether they have been compromised and what effect it has had.