On 11 May, Iress detected and contained unauthorised access to its user space on GitHub, a third-party code storing platform. The platform manages software code before it goes live in production on a separate platform. 

In an update, the firm said it did not store client information on GitHub. 

Iress restricted access to GitHub “immediately upon discovery” and underwent an investigation. 

The firm said: “There is no evidence that client data has been compromised as a result of this issue. There is also no evidence that Iress’ production or client software has been compromised.” 

Following this, the firm has embarked on a process to strengthen access to its platform as well as its protocols “out of an abundance of caution”. 

Sponsored

Aldermore Insights with Jon Cooper: Edition 9 – Why lending strategy is becoming more central in buy to let

Sponsored by Aldermore

Iress said it had made the announcement to be transparent and keep stakeholders informed. 

“The company takes information security extremely seriously and has notified relevant authorities,” it added. 

In March, the company was acquired by Bain Capital Tech Opportunities.