Optus Data Breach Australia Year 2022 – Case Study
In September 2022, Optus Australia was shaken by cyber-attack which resulted in the disclosure of customer’s valuable personal data and information. This case study will investigate ‘modus of operandi’ of hackers and will suggest mitigation strategies to avoid these kind of attacks in the future. Most probably hackers may have used SQL injection attack and/or Brute force attack to enumerate the Optus users details. This paper will also demonstrate one example of SQL injection attack along with the counter measures. Author has also recommended COBIT5 framework to manage risk in cyber security for companies like Optus in this paper.