In a startling revelation, Court Services Victoria (CSV) has disclosed a significant cybersecurity incident that has impacted court cases and tribunals across the state. The breach, which occurred on December 21, 2023, came to light 12 days later when CSV issued a public statement on January 2, 2024.
The breach resulted in unauthorized access to CSV systems, disrupting the audio-visual in-court technology network. Video recordings, audio recordings, and transcription services were among the services affected. The agency promptly isolated and disabled the compromised network, but not before some recordings from hearings held between November 1 and December 21, 2023, were potentially accessed.
Notably, this includes cases heard in the Supreme Court of Victoria, the highest court in the state. There’s also a possibility that hearings predating November 1, stored on the network, might have been accessed. Some of these compromised recordings may involve individuals whose identities are protected by court orders or legislation.
Louise Anderson, CEO of the CSV, expressed regret and empathy, stating, “We understand this will be unsettling for those who have been part of a hearing. We recognize and apologize for the distress that this may cause people.” The agency is working diligently to notify individuals affected by the breach.
The nature of the incident remains undisclosed, and as of now, there is no indication that any recordings have been released to the public. CSV assures the public that all courts remain operational, having implemented measures to continue their proceedings securely while CSV works to restore the affected network.
The agency emphasized that no other court systems or records, including sensitive employee or financial data, were compromised in the cyber-attack. However, they have reported the incident to relevant authorities, including Victoria Police, who are actively involved in the ongoing investigation and response.
In response to the breach, CSV is proactively strengthening security measures across the broader court and tribunal-wide technology environment. This includes efforts to enhance the overall security infrastructure to prevent future incidents.
For those seeking more information or assistance, CSV has set up a dedicated Contact Centre with staff available to address concerns. The CSV’s commitment to transparency and cooperation in the aftermath of this incident underscores the critical importance of cybersecurity in maintaining the integrity of legal proceedings in the digital age. As investigations continue, the ramifications of this breach will undoubtedly be felt across Australia’s legal landscape.