Earlier last week, Rave became aware of some customer files that were taken from our internal systems. We immediately started an internal investigation into the cause and extent of these missing files. During this investigation, we have identified unauthorised access to Rave’s file storage systems. This included uploaded customer files, and older historical customer data.
We identified the method used to access our systems, and took action to prevent any further access. We have engaged with CERT NZ and the Office of the Privacy Commissioner on how to best manage this issue, and prevent a re-occurrence. We have published an important update here.
The Rave site continues to function correctly and remains available for you to manage your projects uninterrupted. Learning from this incident, Rave has added additional security measures, and has engaged with external security specialists to prevent any such incidents in the future.
If you have any further questions, or would like further information on the data that was taken, please email us at email@example.com so we can contact you directly. For steps that you can take to protect yourself visit CERT NZ’s page on information leaks.
We sincerely apologise for the occurrence of this incident and promise to be more vigilant in the future.
Rave Build Management CEO