While Toll has resumed services for around 90 per cent of its customers, a full systems recovery appears to be some weeks away.
Toll’s Global Forwarding platform is now operational and is moving international air and ocean freight shipments, but the company hasn’t returned full functionality to its MyToll portal, which enables customers to book pickups, create shipments and consignments, and track and trace deliveries.
The cyberattack – which has now dragged on for almost a month since Toll first alerted customers on 3 February – has also prevented tracking and tracing of historical bookings, with Toll hoping to restore functionality on this front “in the coming weeks”.
While Toll took the drastic step of shutting down many of its systems in the face of the cyberattack, it declined to comment on how many of those systems were actually impacted or infected by the targeted ransomware attack. Speaking to Investor Daily in February, a spokesperson said that Toll would not pay a ransom for its systems and that it had not engaged with the attacker.
“We believe our decision to not submit to the attacker’s demands is the responsible and an appropriate course of action for our business and as a leader in the wider logistics sector – we don’t want to incentivise these sorts of attacks against other businesses,” a Toll spokesperson told Investor Daily at the time.
While Toll has referred the matter to the relevant authorities, it remains unclear what other steps the company has taken to protect against future attacks.
“The risk of cybercrime is something organisations are facing in increasing numbers here and around the world, one that has implications for society as whole,” a Toll spokesperson told Investor Daily.
“We’re working closely with the relevant authorities to share what we have learned and we believe we should be taking a whole-of-community approach to countering what is a rising threat. We’ll bring those learnings into how we at Toll design and run our operations going forward.”
Several other firms have been on the receiving end of ransomware attacks before, most notably global logistics company Maersk, which was crippled by an attack originating in Ukraine and believed to be the work of the Russian military. That attack wound up costing Maersk almost $300 million.
An Australian neobank has pulled off a massive series A round, raising millions to accelerate product development. ...
APRA’s decision to suspend issuing licences could bleed Australia’s fintech industry of money and jobs. ...
Finance is constantly under threat from data breaches and new forms of cybercrime, but many institutions are still failing to take action. ...