Cyber Incident Victim: Barnett's Couriers
Date:
Apr 2024
Location:
Australia
Summary
A Wollongong-based transport company experienced a significant cyber attack causing prolonged operational disruption, forcing staff and contractor stand-downs and halting new customer pickups while attempting to deliver existing consignments. The incident mirrors broader trends of financially motivated email-based attacks targeting Australian businesses, though the specific intrusion method remains unconfirmed. Union representatives engaged preliminary discussions regarding workforce impacts as recovery efforts extended beyond initial projections. This follows historical cyber disruptions affecting national logistics providers and local institutions, highlighting sector vulnerabilities to attacks disrupting services and supply chains.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 5 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
Barnett's Couriers, a North Wollongong-based trucking company, experienced a disruptive cyber attack on Friday, April 12, 2024, forcing an immediate operational shutdown. The company stood down all staff and contractors while attempting to restore systems, with no public confirmation of the attack vector or perpetrator. An automated email sent to customers shortly after the incident initially projected a resumption of operations by Friday, April 19, but a follow-up communication on Monday, April 15, extended the downtime estimate by an additional week. During this outage, the company limited services to delivering previously collected consignments while suspending all new pickups indefinitely. External attempts to contact Barnett's management by Illawarra Mercury journalists yielded no response, indicating communication challenges within the organization. The Transport Workers Union initiated contact with the company on April 15 to address welfare concerns for stood-down employees and contractors, though discussions remained preliminary at reporting time.
The cyber attack caused significant operational paralysis, mirroring patterns observed in other Australian transport sector incidents like the 2020 Toll Group ransomware attacks that caused month-long disruptions. While Barnett's specific technical impacts remain undisclosed, industry experts cited business email compromise (BEC) as the dominant 2023 cyber threat due to its financial exploitation potential through payment diversion tactics. CyberCX executive Hamish Krebs emphasized the profitability of email system breaches, noting attackers could intercept invoices to steal substantial sums from accounts payable/receivable workflows. The incident occurred amid heightened regional cybersecurity concerns following the University of Wollongong's December 2023 data breach affecting staff and student information. Barnett's prolonged recovery timeline suggested persistent system compromises requiring extended remediation efforts, though the company provided no technical details regarding containment measures or data compromise scope.