On November 3, the Port Melbourne based PNORS Technology Group, which handles data for the state government, was locked out of its IT systems and hit with a ransom demand by hackers believed to be based in Russia.

The gang has also threatened to release data it has stolen.

More than a week later PNORS remains unable to access its systems and so has no idea what data has been taken.

Regaining access is not expected to happen until the middle of next week at the earliest.

PNORS has a contract with Victoria Police to digitise the records of drug and alcohol tests taken by police in the field.

It is understood this data is unlikely to have been affected however as the data is entered directly into VicPol’s computers systems.

The Department of Education and Training also pays it to manage sensitive personal information about families with children in primary schools.

It is additionally responsible for digitising records related to the Victorian Seniors Card.

A source familiar with the state data breach said the Government still had no idea what information had been taken and how many people were affected because it was unclear how many of the records the company created had been retained on its systems.

Nor has the government been able to find out how long the hackers may have had access to the company’s computers before the launch of the ransomware attack.

A Victorian Government spokesman said if it was found that government data has been exposed, departments will notify impacted individuals and provide advice on steps they can take to minimise any risk.

“Departments require all suppliers to maintain the highest levels of data privacy and security – suppliers must comply with the Victorian Protective Data Security Standard,” he said.

More Coverage

The scary details missed in Russian hacker’s Medibank threats

Samantha Maiden

AFP reveals Russia behind Medibank hack

Stephen Drill

Originally published as Port Melbourne’s PNORS Technology Group has ‘no idea’ what data Russian hackers stole