Incident: TechnologyOne investigates ‘cyber incident’ on M365 system | iTnews
Australian SaaS Provider Breach, 10 May 2023
TechnologyOne investigates ‘cyber incident’ on M365 system
“Unauthorised third party” has accessed the company’s internal Microsoft 365 platform.
Source: TechnologyOne investigates ‘cyber incident’ on M365 system | iTnews
View more incidents from SaaS – Software as a Service sector and other reports from Queensland.
TechnologyOne, an Australian ERP SaaS provider, said an “unauthorised third party” has accessed the company’s internal Microsoft 365 platform.
In a financial filing [pdf], the company requested being placed into a trading halt.
The Australian-headquartered vendor said its customer software-as-a-service (SaaS) platform remains unaffected by the breach into its internal Microsoft 365 back-office system.
It said the third-party, which it did not characterise, had “acted illegally” in accessing the M365 instance.
“Our focus remains on the investigation into the incident to determine what data may have been accessed via our internal Microsoft 365 back-office system, and then as is necessary, to engage with impacted individuals on appropriate actions,” the company said in a statement.
TechnologyOne added that it had reported the incident to relevant authorities.