8 June 2018

UPDATE - Monday 25 June 

UQ was recently notified by recruitment service provider PageUp of a security incident involving unauthorised access to its system. PageUp processes job applications and candidate information for a large number of Australian organisations, including UQ. 

While PageUp has conducted forensic investigations and has confirmed that unauthorised access to its systems and personal data relating to job applicants and references occurred, at present it is unable to confirm if the security breach extends to any data related to UQ.

PageUp has advised compromised data may include name, street address, email address, contact phone numbers, birth date (if supplied), nationality, skills, education and work history, and referees information.

The PageUp system was used by UQ to collect only basic information about your job application. In applying for a role at UQ, we did not require information such as bank details or Australian tax file numbers.

Following notification of the data breach, UQ temporarily suspended the job application system as a precaution.

PageUp’s security consultants have confirmed that they have not identified any further threats and PageUp is safe to use. Based on the outcome of that investigation and assurances received from PageUp concerning additional security improvements being implemented by PageUp to guard against similar incidents in the future, UQ has reinstated access to UQ Jobs.

As an additional safety measure, UQ requested a reset of all user passwords. In order to protect personal account details, the next time applicants login to UQ Jobs, they will be prompted to set a new password.  As good practice, UQ recommends that you do not re-use passwords, or use the same password across multiple systems.

Please be assured that UQ takes data security extremely seriously and is continuing to seek further information from PageUp about the nature and extent of any impact.  UQ has also contacted past applicants who applied for jobs using the PageUp system to make them aware of the security breach.

More information about the breach and what actions have been taken to address the breach can be found on the PageUp website.  Individuals can contact PageUp regarding this incident on security-enquiries@pageuppeople.com.



Friday, 8 June 2018

The University of Queensland is one of a number of organisations possibly affected by a data security incident at the cloud-based human resources provider PageUp.

UQ, which uses PageUp to manage job applications and basic candidate information, has temporarily suspended that job application system as a precaution.  As a result, closing dates for positions were extended to ensure no candidates were disadvantaged. 

UQ takes data security extremely seriously and has sought further information from PageUp about the nature and extent of any impact. 

UQ recommends that anyone who has used our online recruitment system should check there has been no unusual activity concerning their personal information.  It is best practice to reset passwords and not re-use old passwords, or the same password across multiple systems.

People concerned about the issue should go to the Incident FAQs on the PageUp website.  For further queries, please contact hrsystems@uq.edu.au.  To submit a job application, please email apply@jobs.uq.edu.au and include the job title and job number in the subject line.