Ballarat splits outsourcing contract after network hack

Powered by SC Magazine
 

Council blames third party for 2010 breach.

Ballarat City Council has split up its network management contract after its IP addresses and log-in details of 430 users were lost by a third-party service provider last year.

Twenty-two-year-old Bradley David Ward broke into the network last August after stealing network access details from the unnamed provider.

Council staff thought its systems were secure after performing regular security audits and penetration tests. But they did not expect the local provider of “high-end network support” to be storing details about its network topology and virtual private network passwords on a public-facing, password protected website.

“The third party was hacked and [Ward] got information about our network topology from a site that had [also] had log in and staff security codes,” the council’s information services manager Annie Dejong said.

“It would be reasonable to assume when you give your data to somebody that they would hold it securely [but] you need to be specific about where you expect your data to be held.”

Remember to sign up to our Security bulletin for the definitive summary and analysis of Infosec threats.

Ward approached the council and informed Dejong of the breach days after it occurred.

Council staff shut down the network for seven days as it implemented the 100 action items in its disaster recovery plan. All critical systems ran in offline mode during that period.

The council performed security checks and rebuilt components of the network with the assistance of vendor partners Infor and AXS-One Computron.

Since the breach, Ballarat City Council has terminated its relationship with the unnamed outsourcer and replaced it with separate contracts for firewall, disaster recovery and network planning services.

Although outsourcing had its risks, Dejong said internal employees – especially disgruntled workers – could also compromise network security.

“I think this happens more than people say,” she said of data breaches. “The value of being a public organisation is we can and should talk about this, so others learn.

“A key lesson is to build relationships with your partners so they clearly understand what your business does.”

‘Non-malicious’ hacker fined

The council determined that Ward had accessed multiple servers but had not stolen any information about Ballarat residents.

Ward also appeared to have tried to access the council’s payroll data but was unsuccessful due to a second layer of security in the Infor software, Dejong said, refuting reports that payroll data was stolen.

“Nothing was stolen and [the hack] wasn’t malicious,” she said, speculating that Ward had broken into the network for bragging rights.

Dejong said council staff would likely have detected the breach even without Ward’s advice, as he had created an unauthorised account in the system.

Ward was fined $6000 by the Ballarat Magistrates Court in April, after pleading guilty to two charges of intentionally causing unauthorised access to restricted data.

His lawyer Hamish Locke reportedly argued that Ward’s “ultimate motives were altruistic” but County Court Judge Sue Pullen and Magistrate Tim McDonald said the sentence needed to deter Ward and the public from committing such offences.

“[The hacker] illegally accessed our computer network and caused an amount of expense and downtime,” Dejong said.

“Nobody really expects that you’ll have to rebuild your network in seven days ... The rebuild took seven days and lots of long nights and working on weekends.”

Copyright © iTnews.com.au . All rights reserved.


Ballarat splits outsourcing contract after network hack
 
 
 
Top Stories
Frugality as a service: the Amazon story
Behind the scenes, Amazon Web Services is one lean machine.
 
Negotiating with the cloud email megavendors
[Blog post] Lessons from Woolworths’ mammoth migration.
 
Qld govt to move up to 149k staff onto Office 365
Australia's largest deployment, outside of the universities.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...

Latest VideosSee all videos »

The great data centre opportunity on Australia's doorstep
The great data centre opportunity on Australia's doorstep
Scott Noteboom, CEO of LitBit speaking at The Australian Data Centre Strategy Summit 2014 in the Gold Coast, Queensland, Australia. http://bit.ly/1qpxVfV Scott Noteboom is a data centre engineer who led builds for Apple and Yahoo in the earliest days of the cloud, and who now eyes Asia as the next big opportunity. Read more: http://www.itnews.com.au/News/372482,how-do-we-serve-three-billion-new-internet-users.aspx#ixzz2yNLmMG5C
Interview: Karl Maftoum, CIO, ACMA
Interview: Karl Maftoum, CIO, ACMA
To COTS or not to COTS? iTnews asks Karl Maftoum, CIO of the ACMA, at the CIO Strategy Summit.
Susan Sly: What is the Role of the CIO?
Susan Sly: What is the Role of the CIO?
AEMO chief information officer Susan Sly calls for more collaboration among Australia's technology leaders at the CIO Strategy Summit.
Meet the 2014 Finance CIO of the Year
Meet the 2014 Finance CIO of the Year
Credit Union Australia's David Gee awarded Finance CIO of the Year at the iTnews Benchmark Awards.
Meet the 2014 Retail CIO of the Year
Meet the 2014 Retail CIO of the Year
Damon Rees named Retail CIO of the Year at the iTnews Benchmark Awards for his work at Woolworths.
Robyn Elliott named the 2014 Utilities CIO of the Year
Robyn Elliott named the 2014 Utilities CIO of the Year
Acting Foxtel CIO David Marks accepts an iTnews Benchmark Award on behalf of Robyn Elliott.
Meet the 2014 Industrial CIO of the Year
Meet the 2014 Industrial CIO of the Year
Sanjay Mehta named Industrial CIO of the Year at the iTnews Benchmark Awards for his work at ConocoPhillips.
Meet the 2014 Healthcare CIO of the Year
Meet the 2014 Healthcare CIO of the Year
Greg Wells named Healthcare CIO of the Year at the iTnews Benchmark Awards for his work at NSW Health.
Meet the 2014 Education CIO of the Year
Meet the 2014 Education CIO of the Year
William Confalonieri named Healthcare CIO of the Year at the iTnews Benchmark Awards for his work at Deakin University.
Meet the 2014 Government CIO of the Year
Meet the 2014 Government CIO of the Year
David Johnson named Government CIO of the Year at the iTnews Benchmark Awards for his work at the Queensland Police Service.
Q and A: Coalition Broadband Policy
Q and A: Coalition Broadband Policy
Malcolm Turnbull and Tony Abbott discuss the Coalition's broadband policy with the press.
AFP scalps hacker 'leader' inside Australia's IT ranks.
AFP scalps hacker 'leader' inside Australia's IT ranks.
The Australian Federal Police have arrested a Sydney-based IT security professional for hacking a government website.
NBN Petition Delivered To Turnbull's Office
NBN Petition Delivered To Turnbull's Office
UTS CIO: IT teams of the future
UTS CIO: IT teams of the future
UTS CIO Chrissy Burns talks data.
New UTS Building: the IT within
New UTS Building: the IT within
The IT behind tomorrow's universities.
iTnews' NBN Panel
iTnews' NBN Panel
Is your enterprise NBN-ready?
Introducing iTnews Labs
Introducing iTnews Labs
See a timelapse of the iTnews labs being unboxed, set up and switched on! iTnews will produce independent testing of the latest enterprise software to hit the market after installing a purpose-built test lab in Sydney. Watch the installation of two DL380p servers, two HP StoreVirtual 4330 storage arrays and two HP ProCurve 2920 switches.
The True Cost of BYOD
The True Cost of BYOD
iTnews' Brett Winterford gives attendees of the first 'Touch Tomorrow' event in Brisbane a brief look at his research into enterprise mobility. What are the use cases and how can they be quantified? What price should you expect to pay for securing mobile access to corporate applications? What's coming around the corner?
Ghost clouds
Ghost clouds
ACMA chair Chris Chapman says there is uncertainty over whether certain classes of cloud service providers are caught by regulations.
Was the Snowden leak inevitable?
Was the Snowden leak inevitable?
Privacy experts David Vaile (UNSW Cyberspace Law and Policy Centre) and Craig Scroggie (CEO, NextDC) claim they were not surprised by the Snowden leaks about the NSA's PRISM program.
Latest Comments
Polls
Which bank is most likely to suffer an RBS-style meltdown?





   |   View results
ANZ
  21%
 
Bankwest
  9%
 
CommBank
  11%
 
National Australia Bank
  17%
 
Suncorp
  24%
 
Westpac
  19%
TOTAL VOTES: 1442

Vote