PageUp, an online recruitment services organisation, has been hit by a data breach, which has affected its customer companies.
The company stated earlier this month that it identified suspicious activity on its network, and immediately started an investigation into the matter.
“PageUp believes that certain information pertaining to staff members, applicants, and referees was accessed by an unauthorised third party,” said the Australian company.
It stated that job applicants’ contact details – including name, email address, physical address, and telephone number – may have been accessed.
Employment details at the time of an application, including employment status, company, and title, may also be at risk.
Companies which use PageUp’s HR software may also be affected by the incident.
Following the statement from PageUp, Anglo American has sent a mail to stakeholders about the incident – as it uses PageUp’s online recruitment services platform.
“The purpose of this note is to let you know that your data may have been affected by this incident,” stated the company in a letter seen by MyBroadband.
“PageUp has advised us that personal data held within its platform, including data relating to Anglo American job applications, may have been affected by this incident.”
“We are working with PageUp to find out more about the nature of the incident and details of individuals who are likely to have been affected.”
Anglo American said that the information is limited to what is held in the PageUp recruitment platform, and in no way affects its systems.
Online applications through the system have been temporarily suspended as a result.
Update – Anglo American response
Anglo American has been made aware of a breach of personal data by one of its third-party vendors, PageUp, and we are taking appropriate action to address the issue and contact those who may be affected.
PageUp provides recruitment services to a number of large companies, including the Anglo American group, and it has informed us that its systems have been accessed by an unauthorised person, thereby gaining access to certain personal data relating to job applications. PageUp cannot confirm whether data relating to Anglo American job applications has been compromised.
Anglo American takes the security of personal and other data extremely seriously. Upon being notified of a potential data breach, we disabled the application facility on our online recruitment portal that was managed by PageUp and put a temporary alternative system in place.
Now that a data breach has been confirmed to us by PageUp, albeit without knowing whether data relating to Anglo American job applications has been affected, we are taking steps to contact those individuals whose personal data may have been compromised. We are of course also ensuring that we fulfil our regulatory obligations in all relevant jurisdictions.