May 7, 2021

Volume XI, Number 127


May 07, 2021

Subscribe to Latest Legal News and Analysis

May 06, 2021

Subscribe to Latest Legal News and Analysis

May 05, 2021

Subscribe to Latest Legal News and Analysis

Continuing to Take Its Toll: Toll Group Still Feeling Impacts Nine Months After Experiencing Ransomware Attack

Back in February, we blogged about the large scale ransomware attack experienced by Toll Group.

IT News reports Toll is still “mopping up” the damage caused by these attacks. Since July, Toll has embarked on a year-long accelerated cyber resilience program incorporating teams in India and Australia which led to the appointment of former Telstra Asia Pacific CISO Berin Lautenbach as Toll’s global head of information security in August.

According to Toll’s Global head of data, IT security and governance Diana Peh, Toll is “still feeling the impacts” of the ransomware attacks. Peh suggests the impacts of cyber incidents such as those experienced by Toll live well beyond the “containment and remediation” phase and that Toll was still engaging in extensive efforts to manage ongoing customer concerns, regulatory obligations and the like, including undertaking practice runs implementing Toll’s incident response plan on a quarterly basis and curating external cybersecurity experts.

Toll’s experience highlights the importance of having effective cybersecurity processes and practices in place that are well rehearsed, to protect against and mitigate the potential long-lasting impacts of a cyber-security incident. It is better to invest upfront in cybersecurity than suffer the more costly and “long tail” effects of a cyber incident like Toll.  Organisations too often only learn from their own disasters, when they could have learnt from others.

Copyright 2021 K & L GatesNational Law Review, Volume X, Number 307



About this Author

Cameron Abbott, Technology, Attorney, Australia, corporate, KL Gates Law Firm

Mr. Abbott is a corporate lawyer who focuses on technology, telecommunications and broadcasting transactions. He assists corporations and vendors in managing their technology requirements and contracts, particularly large outsourcing and technology procurements issues including licensing terms for SAP and Oracle and major system integration transactions.

Mr. Abbott partners with his clients to ensure market leading solutions are implemented in to their businesses. He concentrates on managing and negotiating complex technology solutions, which...

Keely O'Dowd, K&L Gates, attorney, Melbourne

Ms. O'Dowd is an experienced lawyer with a focus on technology and sourcing projects. She advises on a broad range of technology transactions, including procurement, outsourcing and software licensing. This work includes drafting and advising on a range of IT procurement and supply agreements. Ms. O'Dowd advises a range of corporations on privacy and cybersecurity.

Max Evans Lawyer technology matters, Software as a Service Agreements SaaS Sydney

Mr. Evans is a corporate and transactional lawyer with a focus on information technology and outsourcing. He provides assistance on a broad range of technology matters, including Software as a Service Agreements (SaaS), terms and conditions for software products and platforms as well as software procurement and outsourcing projects. Mr. Evans also provides assistance with technology and privacy aspects of mergers and acquisitions transactions.

Professional Background

Prior to joining K&L Gates, Mr. Evans worked in the insolvency and bankruptcy practice of...