First published: 27 Apr 2021
Last updated: 27 Apr 2021

Content written for

Small & medium business
Large organisations & infrastructure
Government

Background

The compromise of Click Studios’ software update process in April 2021 has resulted in some PasswordState users downloading malware through the software update function. If executed, the malware leads to the compromise of the customer’s PasswordState instance, giving the malicious actor access to all passwords stored in PasswordState, and creates the opportunity for follow-on malicious activity.

Additional Information

The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is providing advice and assistance to Click Studios as they respond to this incident. Click Studios has produced publicly available incident management advisories for affected customers. Customers of Click Studios should follow the steps detailed in these advisories to understand whether they are affected. Click Studios will continue to update these advisories as required.

Assistance

The ASD’s ACSC strongly recommends Australian organisations who have been affected by this compromise to report the incident to the ASD’s ACSC via ASD.Assist@defence.gov.au or 1300 CYBER 1. The ASD’s ACSC continues to monitor the situation and is able to provide assistance and advice as required.

Was this helpful?
Yes this was helpful
No this was not helpful

Thanks for your feedback!

We welcome additional feedback below.

Was this information easy to understand?
Will you take action after reading this?
Did you find the information you were looking for?
Did the design and layout of this page meet your expectations?