Skeggs Goldstien was the victim of a cyber incident in late May 2025. The incident involved an unknown third-party gaining unauthorised access to our IT environment. Immediate, comprehensive steps were taken by us and our cyber security experts to contain and investigate the incident.
We confirm all our systems are secure and contained and that we have already notified the Office of the Australian Information Commissioner (OAIC) and the Australian Cyber Security Centre (ACSC) of the incident.
Our investigations have unfortunately uncovered that a server which holds our client records prior to February 2023 was impacted in the incident, and these client records might have been accessed. Please note that there is no evidence that any specific personal information has been impacted, however we are making this statement out of abundance of caution.
We collect the following types of information about our clients. To the extent you provided this to us, it may have formed part of the impacted dataset.
Financial advisory clients:
- Contact information (e.g. phone number, email address or address);
- Tax File Number
- Passport Scan
- Drivers’ License Scan
- Medicare Number
- Centrelink Reference Number
- Bank details (BSB and Account Number)
- Superannuation details
Accounting clients:
- Contact information (e.g. phone number, email address or address);
- Tax File Number
- Bank details (BSB and Account Number)
What can you do?
If you have concerns about the incident, we recommend that you:
- Be alert to any suspicious emails, SMS or telephone communications that are disguised to look like they come from someone you know or trust. Verify the legitimacy of communications by authenticating the sender. This includes checking email names and domains.
- Do not open links that look suspicious. If you are unsure about a link sent to you by a company, you should go to the company’s website and look for the product or service that was offered.
- Be alert to phishing scams. This could include scams that target you through post or email. Phishing scams are attempts by scammers to trick people into providing their personal information passwords, credit card numbers and/or sensitive personal information.
- Ensure that you have up-to-date anti-virus software and any recommended software patches installed on your computer systems.
- You may consider obtaining a free credit report to ensure there is no unusual activity on your records. Equifax credit reports can be accessed at https://www.equifax.com.au/personal/products/credit-and-identity-products.
- Visit Scamwatch (at https://www.scamwatch.gov.au/) to keep up with current scam trends.
- You can find further information about online safety, cyber security and helpful tips to protect yourself at the Australian Cyber Security Centre or the ACCC’s Scam watch website.
We appreciate that this update may cause some alarm for our clients and wish to assure you that Skeggs Goldstien is taking all steps it can to protect our clients’ information and respond to the incident efficiently.
Should you have any queries about the incident please feel free to reach out to 1300 753 447
