In early February, Forta announced that it had found a zero-day vulnerability in GoAnywhere, a system allowing companies to transfer large sets of data and files.
This vulnerability was open for 10 days, which meant remotely executed code could be triggered within vulnerable systems.
During this time, it’s believed that around 130 organisations had information taken from them.
In a statement, Crown Resorts has confirmed it was recently contacted by a ransomware group that had obtained files from the company.
A spokesperson for Crown Resorts said: “Today we can confirm that a small number of files have been released on the dark web, including employee time and attendance records and some membership numbers from Crown Sydney.
“We can confirm that no personal information of customers has been compromised as part of this breach.”
While the time and attendance records will affect both current and former employees, they will not contain financially sensitive information such as bank names, payslip information or tax ID.
The information that was leaked regarding membership information will not contain any personal information on the customer.
The membership numbers will only reveal that a particular string of numbers were in use.
The spokesperson continues: “We are proactively notifying all impacted individuals and are updating membership numbers of those affected out of an abundance of caution.
"Crown continues to work with law enforcement and our regulators in relation to this cybercrime.”
