- 电话:1800 882 288
- 周一至周五 9:00 - 16:30
- 60 Weldon St Burwood NSW 2134
Please read this Update, together with the Notice below that we first published on 5 November 2024 and updated on 13 November 2024 and any communications you have received from us about the cyber incident. This Update explains the steps we have been taking to confirm what types of information have been impacted and who the impacted information relates to so we can provide further relevant guidance. It also explains what notification and other steps we are continuing to take.
請閱讀本更新以及我們於 2024 年 11 月 5 日首次發佈並於 2024 年 11 月 13 日更新的以下通知,以及您從我們收到的有關網路事件的任何通訊。此更新解釋了我們為確認哪些類型的資訊受到影響以及受影響的資訊與誰相關而採取的步驟,以便我們可以提供進一步的相關指引。它還解釋了我們將繼續採取哪些通知和其他步驟。
What data has been impacted
哪些資料受到影響
We have confirmed that files on one of our servers was impacted. Only a description of the files was published on the dark web for a short time and has been removed. None of the documents or information in the files have been published. (The dark web is the part of the internet that cyber criminals usually use to make available or sell stolen data.)
我們已確認其中一台伺服器上的檔案受到影響。僅檔案的描述在暗網上短暫發佈並已刪除。檔案中的任何文件或資訊均未公開。 (暗網是網路犯罪分子通常用來提供或出售被盜資料的網路的一部分。)
Who has been impacted
誰受到了影響
We have reviewed the impacted files with the help of our expert external advisors to identify other individuals whose personal information was in documents in these files.
我們在外部專家顧問的幫助下審查了受影響的檔案,確定了檔案內的文件亦包含其他人的個人身份資訊 。
We have confirmed that this incident has impacted the personal information of our current and previous: care recipients, clients and tenants; staff and volunteers; donors; suppliers and contractors.
我們已確認此事件影響了我們當前和過去的的個人資訊:照護對象、客戶和租戶;員工和義工;捐贈者;供應商和承包商。
The incident has also impacted some personal information about other individuals such as: the families, next of kin, or other contacts for our staff, volunteers, care recipients, clients and tenants.
這事件也影響了其他人的一些個人資訊,例如:家庭、近親或員工、義工、照護對象、客戶和租戶的其他聯絡人。
Types of information impacted
受影響的資訊類型
The main types of personal information impacted depends on the relationship we have or have had with you and may include one, some or a combination of the following:
受影響的個人資訊的主要類型取決於我們與您之間的關係,可能包括以下一項、數項或組合的資訊:
personal and contact information such as: name, email address, address, date of birth, phone numbers.
個人和聯絡資訊,例如:姓名、電子郵件地址、地址、出生日期、電話號碼。
government related identifiers and documents such as: Medicare card information, Centrelink Customer Reference Number (CRN) and in some cases, passports, drivers’ licences and other government issued photo IDs and other government issued documents.
政府相關的識別碼和文件,例如:Medicare 卡資訊、Centrelink 客戶參考號碼(CRN),在某些情況下,還包括護照、駕駛執照和其他政府頒發的帶照片的身份證件和其他政府頒發的文件。
financial information such as: bank account details, invoicing and payment information, financial statements and other financial information
財務資訊,例如:銀行帳戶詳細資料、發票和付款資訊、財務報表和其他財務資訊。
health information such as: health records, assessments and reports.
健康資訊,例如:健康記錄、評估和報告。
other information about your relationship with us such as: information about any complaints and investigations or guardianship and power of attorney.
有關您與我們關係的其他資訊,例如:有關任何投訴和調查或監護權和授權書的資訊。
Our notification steps
我們的通知步驟
In addition to our website notice and updates about the incident, we have notified or will be directly notifying certain groups who we have assessed are at higher risk and sharing information with those groups in our community where appropriate to make them aware of these matters. If a notice has been communicated to you, you should consider the advice and information in that notice as it may cover different or more specific types of personal information and advice.
除了我們的網站通知和有關該事件的更新之外,我們還已通知或將直接通知我們評估為處於較高風險的某些組別,並在適當的情況下與我們社區中的這些組別分享資訊,以使他們了解這些事項。如果我們已向您發出通知,您應該考慮該通知中的建議和資訊,因為它可能涵蓋不同或更具體類型的個人資訊和建議。
What else is ANHF doing to help
澳华养老 還提供哪些幫助
We continue to:
我們繼續:
work with the support of our external expert advisors to complete our understanding of the information in the files, all the personal information and individuals affected, and the likely risks and to take steps to mitigate these.
在我們的外部專家顧問的支持下,完成我們對檔案中的資訊、所有受影響的個人資訊和個人以及可能的風險的理解,並採取措施減輕這些風險。
work with relevant government agencies to support these steps.
與相關政府機構合作支持這些步驟。
implement additional security measures based on the expert advice provided.
根據專家提供的建議實施額外的安全措施。
closely monitor our systems and the dark web.
密切監控我們的系統和暗網。
engage with the Office of the Australian Information Commissioner (OAIC).
與澳大利亞信息專員辦公室(OAIC) 合作。
What you should do to protect yourself if you are affected
如果您受到影響,您應該採取什麼措施來保護自己
If you are, or think you may have been, in a group that has been affected by this incident, in addition to the guidance in our Notice below, these are further steps you can take to protect your financial information:
如果您屬於或認為您可能屬於受此事件影響的組別,除了我們下面通知中的指引之外,您還可以採取以下進一步措施來保護您的財務資訊:
let your bank know straight away and request extra security measures to be placed on to your account.
立即聯繫您的銀行並要求對您的帳戶採取額外的安全措施。
monitor your account for any unusual activity, such as transactions you don’t recognise. If you identify a transaction you didn’t make, report it immediately to your financial institution.
緊密留意您的帳戶是否有任何異常活動,例如您不認識的交易。如果您發現未經授權的交易,請立即向您的金融機構報告。
contact an Australian credit reporting agency to get alerted changes to your credit reporting, monthly credit reports and score tracking. Please visit Moneysmart.gov.au for more information on credit reporting and how to get a copy of your credit report for free.
聯繫澳洲的信用報告機構,以獲取有關信用報告變更的警報、每月信用報告和分數跟踪。請訪問Moneysmart.gov.au 瞭解有關信用報告以及如何免費獲取信用報告的更多資訊。
Remember you can also:
請記住您也可以:
contact IDCARE for free advice and identity counselling using the referral code ANHF24.
使用推薦代碼ANHF24 聯絡IDCARE,取得免費建議和身份諮詢。
visit the websites listed in our Notice below for more cyber security guidance and information about steps you can take to protect your identity and accounts.
請訪問我們下面的通知中列出的網站,以取得更多網路安全指南以及有關保護您的身份和帳戶可採取的步驟及資訊。
call our dedicated toll-free incident hotline number 1800 001 280 (between 9am – 5pm AEST Monday to Friday excluding public holidays) to talk to us about your specific circumstances.
請撥打我們的專用免費事件熱線號碼1800 001 280(澳洲東部標準時間週一至週五上午9 點至下午5 點,公眾假期除外),與我們討論您的具體情況。
We thank you again for your ongoing patience and understanding as continue to work to complete our review and notification of the incident.
我們將繼續努力完成對此事件的審查和通知, 我們再次感謝您一直以來的耐心和理解。
We want to let you know that we have recently identified a cybersecurity incident that has affected the Australian Nursing Home Foundation (ANHF). ANHF is a New South Wales based aged care provider of culturally appropriate services to elderly people of Chinese and South East Asian background who are residents in our aged care homes and our community housing, who attend our senior wellness centres and who receive in-home services. We are also supported by our dedicated staff, volunteers and donors.
我們在此告知大家,澳華療養院基金(ANHF)近日發現了一宗網絡安全事故。本機構是一家位於新州的高齡護理服務機構,為居住在這裡的華裔和東南亞長者提供符合文化需求的服務,包括療養院、社區房屋、長者活動中心及家居護理服務。我們的服務由敬業的員工、義工和捐贈者的攜手支援。
The incident involved a cybersecurity incident that has impacted some of our systems and the personal information we store on them. We believe this includes personal information about our care recipients, clients, tenants, their families, our staff, volunteers and donors and may also include personal information about other individuals who we deal with such as our suppliers and contractors. Based on the available evidence, it is likely that some information has been stolen from our systems.
這宗網絡安全事故影響了我們部分系統以及存儲在這些系統上的個人信息。我們相信,這包括了我們的護理對象、客戶、租戶及其家屬、我們的員工、義工和及捐贈者的個人資料,也可能涉及其他與我們有業務往來的供應商和承包商。根據現有的狀況顯示,部分資訊可能已從我們的系統中被竊取。
We are treating the matter very seriously. We have engaged our IT and cyber incident specialists to help us investigate and respond to the incident. Our priority at this stage is to understand how it happened, to ensure our systems and information are secure, and to enable us to continue providing important services to our clients. We are also working urgently to establish what information may have been impacted.
我們對此事故極為重視,並已聘請資訊科技與網絡安全專家協助調查和應對。目前的首要任務是查明事故原因,確保系統和資訊的安全,並讓我們能夠繼續為客戶提供相關服務。我們正緊急評估可能受影響的資訊範疇。
We have notified the Australian Cyber Security Centre (ACSC) and the Office of the Australian Information Commissioner (OAIC) and we are also communicating with the Australian Government’s National Office of Cyber Security in relation to the incident. The NSW Police have also been notified and we have communicated with them.
我們已通知澳洲網絡安全中心 (ACSC) 和澳洲資訊專員辦公室 (OAIC),並與澳洲政府的國家網絡安全辦公室及新州警方保持聯繫,確保事件得到適當處理。
We continue to operate and deliver all of our services with the support of our staff and volunteers and we can continue to accept donations.
在我們員工和義工的支援下,我們的所有服務均正常運行,並可繼續接受捐款。
We will communicate further updates as soon as possible once more information is known about the incident, including details about other support measures we can provide to affected individuals.
一旦掌握更多相關資訊,我們將立即向大家更新事件進展,包括可能為受影響人士提供的其他支援措施。
Any individuals who may have been affected, including our staff, care recipients, clients, tenants, their families, volunteers and donors, as well as suppliers and contractors who we deal with, should:
任何可能受到影響的人士,包括我們的員工、護理對象、客戶、租戶及其家屬、義工和捐贈者,以及我們的供應商和承包商,應該
We encourage you to visit the following websites for cyber security guidance and steps you can take to protect your identity and accounts:
我們鼓勵您查看以下網站,獲取網絡安全指引及保護個人資訊的建議:
• Australian Cyber Security Centre (澳洲網路安全中心): Home | Cyber.gov.au
• OAIC for tips on protecting your identity ( 提供有關身份保護的指引) : OAIC Guidance
• Scamwatch: www.scamwatch.gov.au (you can also report scams on this website by clicking on the ‘Report a scam’ button on the home page 您亦可以到主頁上的“報告詐騙”報告詐騙事故).
We are partnering with IDCARE, Australia’s national identity and cyber support community service who have expert Case Managers who can work with you to address any concerns you have about risks to your personal information risks and if you think your information may have been misused.
我們正與 IDCARE 合作,這是一家為全國提供身分安全和網絡支援服務的專業機構。他們的專家顧問可協助您處理個人資訊風險,如您擔心資料遭不當使用,IDCARE 可提供支援。
IDCARE’s services are at no cost to you.
IDCARE 對您提供免費的服務。
If you wish to speak with one of their expert Case Managers, please complete an online Get Help form at www.idcare.org or call 1800 595160. They are available from 9am-5pm AEST Monday to Friday excluding public holidays. They can provide interpreters if you require.
如需與專家顧問聯繫,請在 www.idcare.org 完成「尋求幫助」的線上表格,或致電 1800 595 160 (澳洲東部標準時間 9am – 5pm, 週一至週五,公眾假期除外)。如需翻譯服務,他們可提供協助。請聯絡時提供推薦代碼 ANHF24。
When contacting IDCARE please use the following referral code ANHF24.
聯繫 IDCARE 時,請使用以下推薦代碼 ANHF24.
We sincerely apologise for what has happened and any impact it may cause to anyone that is part of our community. We want to assure you that our team is working hard with our expert providers and relevant government agencies to investigate and resolve the incident.
我們對事故的發生感到遺憾,並對可能受影響的社區人士深表歉意。我們的團隊正在與專家和相關政府機構緊密合作,努力調查並解決此事件。
If you have any questions or concerns or would like to talk to us about your specific circumstances, please use the following dedicated toll-free incident hotline number we have set up for all incident enquiries: 1800 001 280 ( between 9am – 5pm AEST Monday to Friday excluding public holidays).
如果您有任何問題或疑慮,或希望與我們討論您的具體情況,請致電我們為此次事件設立的免費專線 1800 001 280 (澳洲東部標準時間 9am – 5pm, 週一至週五,公眾假期除外)。
You should also monitor the usual channels we use to communicate with you on, which may include: email, phone, WhatsApp and WeChat.
請持續關注我們日常使用的溝通渠道,包括電子郵件、電話、WhatsApp 和微信。
Thank you for your patience and understanding during this time as we work to respond to the incident.
感謝您在這段時間內的耐心與理解。
郑赐霞女士
行政总裁
行政總裁
5 November 2024
2024年11月5日
*Updated 13/11/2024
*更新於2024年11月13日
