Pont3, an Australian event organizer, suffered a data breach incident after an unauthorized party had gained access to its mailing list and management service via a legitimate user account.
The compromised information included names, mailing addresses, phone numbers, and emails, but not financial details.
New South Wales police investigated the incident and immediately changed the account’s password.
TPRM report: https://scoringcyber.rankiteo.com/company/pont3-pty-ltd
"id": "pon2055622",
"linkid": "pont3-pty-ltd",
"type": "Breach",
"date": "10/2016",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Event Management',
'location': 'Australia',
'name': 'Pont3',
'type': 'Event Organizer'}],
'attack_vector': 'Unauthorized access via legitimate user account',
'data_breach': {'personally_identifiable_information': True,
'type_of_data_compromised': ['names',
'mailing addresses',
'phone numbers',
'emails']},
'description': 'Pont3, an Australian event organizer, suffered a data breach '
'incident after an unauthorized party had gained access to its '
'mailing list and management service via a legitimate user '
'account.',
'impact': {'data_compromised': ['names',
'mailing addresses',
'phone numbers',
'emails'],
'payment_information_risk': 'None',
'systems_affected': ['mailing list', 'management service']},
'initial_access_broker': {'entry_point': 'Legitimate user account'},
'investigation_status': 'Investigated by New South Wales police',
'response': {'containment_measures': "Changed account's password",
'law_enforcement_notified': 'New South Wales police'},
'title': 'Pont3 Data Breach',
'type': 'Data Breach'}