UQ was recently notified by recruitment service provider PageUp of a security incident involving unauthorised access to its system. PageUp processes job applications and candidate information for a large number of Australian organisations, including UQ. 

While PageUp has conducted forensic investigations and has confirmed that unauthorised access to its systems and personal data relating to job applicants and references occurred, at present it is unable to confirm if the security breach extends to any data related to UQ.

PageUp has advised compromised data may include name, street address, email address, contact phone numbers, birth date (if supplied), nationality, skills, education and work history, and referees information.

The PageUp system was used by UQ to collect only basic information about your job application. In applying for a role at UQ, we did not require information such as bank details or Australian tax file numbers.

Following notification of the data breach, UQ temporarily suspended the job application system as a precaution.

PageUp’s security consultants have confirmed that they have not identified any further threats and PageUp is safe to use. Based on the outcome of that investigation and assurances received from PageUp concerning additional security improvements being implemented by PageUp to guard against similar incidents in the future, UQ has reinstated access to UQ Jobs.

As an additional safety measure, UQ requested a reset of all user passwords. In order to protect personal account details, the next time applicants login to UQ Jobs, they will be prompted to set a new password.  As good practice, UQ recommends that you do not re-use passwords, or use the same password across multiple systems.

Please be assured that UQ takes data security extremely seriously and is continuing to seek further information from PageUp about the nature and extent of any impact.  UQ has also contacted past applicants who applied for jobs using the PageUp system to make them aware of the security breach.

More information about the breach and what actions have been taken to address the breach can be found on the PageUp website.  Individuals can contact PageUp regarding this incident on security-enquiries@pageuppeople.com.