Security Breach – 14 Jun 2024

penetration testing

Security Breach – 14 Jun 2024

One of the most effective ways for information technology (IT) professionals to uncover a company’s weaknesses before the bad guys do is penetration testing. By simulating real-world cyber attacks, penetration tests, sometimes called pen tests, provide invaluable insights into an organisation’s security posture, revealing weaknesses that could potentially lead to data breaches or other security incidents.

Penetration testing stands out as an essential tool in the cybersecurity arsenal, offering a proactive approach to identify vulnerabilities before they can be exploited by malicious actors. Whether you’re a small business owner, a cybersecurity professional, or part of a larger enterprise, understanding how to tailor pen testing to your organisation’s unique landscape is key to safeguarding your data and maintaining trust with your stakeholders.

Recent Breaches

 

Australia – Ticketek Australia – Ticket Seller

Exploit: Supply Chain Data Breach

Risk to Business: Moderate: Ticketek Australia has informed customers that sensitive stored on a cloud-based platform by a global third-party supplier had been exposed in a data breach at a third-party data storage provider. The company said that customer names, dates of birth and email addresses may have been exposed in the incident. This breach, as well as the recent Ticketmaster and Santander Bank breaches all appear to be related to the cloud data platform Snowflake. However, the platform claims that the breach was caused by its customers’ poor security procedures. The story is still developing.

New Zealand – Smith & Caughey’s – Retailer

Exploit: Ransomware

Risk to Business: Moderate: Auckland department store Smith & Caughey’s has fallen victim to a cyberattack, on the same day it announced it proposed to close in early 2025, after 144 years in business. A store executive said that the store’s server and retail operations systems have been crypto-locked, likely the result of a ransomware infection. The official stated that the attack has impacted the store’s ability to communicate with staff, customers, suppliers and other critical stakeholders.

Talk to a TCT team member today about implementing cyber security plan for your business.

Robert Brown
14/06/2024

Related Articles:
Build a Culture of Cyber Awareness
Continuous Monitoring is a Cybersecurity Must