An investigation has been launched into how a piece of malicious computer software came to be embedded in the Canterbury Earthquake Recovery Authority's website.
The site has been offline since Wednesday when a routine check of the server discovered hacking software usually used to mine for private information.
The authority's acting chief executive, Warwick Isaacs, says there's no suggestion that any part of the website has been compromised, but has asked that every page of information updated in the past month be checked.
Mr Isaacs says the software is usually used to gain credit card details or private information, but nothing of that nature is on the website.
The site was operating again on Thursday, but with restrictions.
