Select Page

Incident: Football Australia data breach reportedly exposes contracts, passports, and ticket information | ABC News Australia

Posted by | Feb 1, 2024 | , , , , , | 0 |

Incident: Football Australia data breach reportedly exposes contracts, passports, and ticket information | ABC News Australia

Australian Football Breach, 1 February 2024

Football Australia data breach reportedly exposes contracts, passports, and ticket information

Plain-text digital “keys” in the publicly accessible code, access to 127 digital storage containers

Company Statement: Football Australia is aware of reports of a possible data breach and is investigating the matter as a priority | 1st Feb 2024
Source: Football Australia data breach reportedly exposes contracts, passports, and ticket information | ABC News Australia

View more incidents relating to Sporting and Recreation sector.

YouTube player

 

Millions of football participants across Australia have potentially had their personal information leaked online after a security flaw was identified in Football Australia’s (FA) digital infrastructure.

The national governing body accidentally left plain-text digital “keys”, including “secret keys”, lingering in the publicly-accessible code of its sub-domain, meaning anybody could access it if they knew where to look.

These keys supposedly provided the publication’s researchers with access to 127 digital storage containers which contain data and private details from grassroots participants all the way through to national team players.

It is claim that the various buckets of data included players’ personal details, contracts, and passports, as well as additional data about ticket purchase information, and detailed source code and scripts of FA’s digital infrastructure.

Football Australia Statement
 

Rate:

About The Author

Steven Kirby

I provide independent and practical consultancy services through raising awareness and fostering the energy for change that delivers improved business management of information security governance, risk and compliance.

Related Posts

Incident: Pizza Hut Australia leaks one million customers’ details, claims ShinyHunters hacking group | Bitdefender

Incident: Pizza Hut Australia leaks one million customers’ details, claims ShinyHunters hacking group | Bitdefender

September 6, 2023

Incident: Fire Rescue Victoria investigating security incident | iTnews

Incident: Fire Rescue Victoria investigating security incident | iTnews

December 16, 2022

Incident: Cyber scare shuts down hospital IT systems in rural north-east Victoria | Brisbane Times

Incident: Cyber scare shuts down hospital IT systems in rural north-east Victoria | Brisbane Times

October 23, 2019

Incident: Qantas confirms technology issue caused data breach that exposed personal information of customers – ABC News Australia

Incident: Qantas confirms technology issue caused data breach that exposed personal information of customers – ABC News Australia

May 3, 2024

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Please follow the Source link to the original article to support the content owner. We only provide a brief summary with metadata to assist in categorisation.

More Australian News

Exclusive: Prime Properties listed as breach victim by M3rx ransomware
Exclusive: Prime Properties listed as breach victim by M3rx ransomware

Hackers are alleged to have stolen more than 80,000 documents totalling 100 gigabytes of data from a Sydney-based property investment firm. • Fri, 01 … [...]

Alert! Wave of fake toll, parking scams impacting countries worldwide, including Australia and New Zealand
Alert! Wave of fake toll, parking scams impacting countries worldwide, including Australia and New Zealand

Scammers observed impersonating Aussie toll operator Linkt and the New Zealand Police and Ministry of Justice. • Wed, 29 Apr 2026 • … [...]

NZ council cyber attack leads to ID and financial data being exposed
NZ council cyber attack leads to ID and financial data being exposed

A cyber attack impacting a New Zealand city council has compromised the data of hundreds of people. • Wed, 29 Apr 2026 • Security *]:clear-none … [...]

Exclusive: NSW-based Strata Republic allegedly breached by Kairos ransomware group
Exclusive: NSW-based Strata Republic allegedly breached by Kairos ransomware group

Hackers claim to have stolen 441 gigabytes of data, including internal correspondence, driver’s licence scans and revealing Christmas party photos. • … [...]

Exclusive: Gelatissimo confirms unauthorised access, investigates DragonForce hack claims
Exclusive: Gelatissimo confirms unauthorised access, investigates DragonForce hack claims

Major Australian ice-cream retailer Gelatissimo has launched an investigation into claims made by hackers that the company was breached in a … [...]

Most Australians leaving data open to cybercriminals
Most Australians leaving data open to cybercriminals

Two-thirds of Australians are sharing key information that makes them easy targets for scammers and cyber criminals. The new research from the Department of Home Affairs also found more than [...]

NSW Treasury staffer charged over major data breach | 7NEWS
NSW Treasury staffer charged over major data breach | 7NEWS

A 45-year-old New South Wales Treasury employee has been arrested and charged with accessing and downloading over 5,500 sensitive government documents containing confidential, commercial and financial information across multiple NSW [...]

Warning Anthropic's Mythos could pose cyber risk to banks and critical infrastructure | The Business
Warning Anthropic's Mythos could pose cyber risk to banks and critical infrastructure | The Business

Australian banks, power providers and infrastructure firms do not have access to test their systems against a powerful new AI cybersecurity risk, Anthropic's Mythos. Anthropic has claimed Claude Mythos is [...]

Australian Army research paper advocates for Australian national cyber reserve force, volunteer cyber organisations
Australian Army research paper advocates for Australian national cyber reserve force, volunteer cyber organisations

A newly published Australian Army Research Centre paper has highlighted the need for Australia to establish an Australian national cyber reserve … [...]

Generation Life informs customers of ‘cyber incident’ as owner shares incident with ASX
Generation Life informs customers of ‘cyber incident’ as owner shares incident with ASX

Australian investment firm Generation Life says there is no evidence of any unauthorised transaction, but is investigating a potential data breach. • … [...]

PAW 2026
PAW 2026

On this page Privacy Awareness Week 2026 Trust is built here. In every privacy complaint. In every resolution. Privacy Awareness Week (PAW) is an annual … [...]

RentTech platforms must stop unfair and excessive personal information collection, says Privacy Commissioner
RentTech platforms must stop unfair and excessive personal information collection, says Privacy Commissioner

A determination issued today by the Privacy Commissioner finds that the 2Apply rental technology platform, operated by InspectRealEstate (IRE), … [...]

Shares
Share This

Discover more from Australian Cyber Aware

Subscribe now to keep reading and get access to the full archive.

Continue reading