Insights as a Service episode:

41. The Optus Hack – What it teaches us

41. The Optus Hack – What it teaches us

By now we have all heard about the Optus hack, with around 10 million people’s data at risk and up to 2 million sensitive records taken.

This week we mark the start of Cyber Security Awareness Month by looking at what happened (based on current reporting), what could have been done to prevent it, and what best practice cyber security looks like. Darryl Turner, Head of DevOps at Lightwire, joins Brendan and Nick to go through all the details.

Timestamps:

  • 0:00 Intro to Cyber Security episode
  • 1:35 Details of the Optus cyber attack
  • 3:00 What makes the Optus attack unique
  • 4:00 What can hackers do with the Optus data?
  • 7:15 What caused the Optus attack
  • 8:45 What’s an API & Happy path testing
  • 13:30: Authentication issues
  • 15:15 How cyber security weaknesses are exposed
  • 18:30: Penetration testing responsibilities
  • 24:30: How bug bounty programs improve cyber security
  • 30:15: Red teaming to simulate attacks boosting real defense
  • 34:00: The role of Cyber Security awareness month
  • 36:20: Understanding the human risk element of cyber security
  • 39:00: Data governance to mitigate fallout

This podcast is brought to you by Lightwire Business – the telco that compliments your MSP service offering instead of competing with it. Check out how you can add more revenue to your MSP with (white labelled) voice, data, and managed solutions at: https://www.lightwirebusiness.com/

Recent Posts

3CX Small Business – Multi-Tenant

For small businesses, 3CX SMB is the smart choice – a fully-managed, cost-effective PBX that covers all the essentials like voicemail, call queues, and digital receptionists. Perfect for teams of up to 10 users who don’t need advanced features or deep integrations.

Read More »

Lightwire Threat Feed Service

Under our new Lightwire Threat Feed Service (LTFS), we’ve kicked off by adding two key services from the National Cyber Security Centre (NCSC); Malware Free Networks (MFN) and the Phishing Disruption Service (PDS).

Read More »

Pulse Detect – Public Port Scanning

Pulse Detect provides clear visibility into publicly available vulnerability data associated with your infrastructure — including open ports and known Common Vulnerabilities and Exposures (CVEs) linked to your public IPs. This is the same type of information cyber adversaries actively seek out.

Read More »

Sign up for our Newsletter

Join over 2000+ customers who stay up to date with resources, articles, and sometimes controversial industry insights.