New Zealand Post is seeking to procure anti-phishing and cybercrime protection services on behalf of Kiwibank, as the troubled state-owned organisation prepares to sell its stake for $495 million.
As revealed in April, NZ Post chairman Sir Michael Cullen outlined plans to sell a 25 percent stake in Kiwibank to the New Zealand Super Fund and 20 per cent to ACC.
While due diligence could still see the deal collapse, Kiwibank, a wholly owned subsidiary of NZ Post, wants to to procure anti-phishing and cybercrime protection services including the “proactive monitoring of cybercrime activities” utilising the Kiwibank brand especially those targeting Kiwibank staff and customers.
Examples of such activities are phishing, smishing (malicious texts), vishing (malicious phone calls), malware (files sent that cause damage), spam, rogue mobile applications, scams, ransomware, and account take-overs.
The request for proposals, which opened on May 9 and closes on May 30, also requires the mitigation of cybercrime activities using the Kiwibank brand including but not limited to threat removal, recovery of compromised credentials, post-threat removal monitoring, advising Kiwibank of preventative actions.
In addition, the tender seeks “proactive reporting on service levels as well as insights and advice on cybercrime activities”, while providing information on cybercrime activities utilising the Kiwibank brand.
“NZ Post does not currently receive the breadth of anti-phishing and cybercrime protection services that Kiwibank does but is interested in procuring a greater number of services,” a tender document stated.
“NZ Post is participating in this RFP, including in the evaluation of Responses, and may also purchase the same or similar Services from the successful Respondent for NZ Post brands.”