iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
A major Australian motorcycle distributor has revealed the details of a data breach caused by a threat actor accessing a third-party vendor.
The Australian Securities Exchange (ASX) listed MotorCycle Holdings revealed in an ASX announcement that a threat actor gained unauthorised access to a web server hosted by one of its third-party vendors for two websites within its MOJO Motorcycles business – Sherco and Lambretta.
“The actor inserted malicious code into the websites, which may have resulted in the exposure of some customer personal information, including names, addresses, email addresses and phone numbers,” said MotorCycle Holdings.
“Additionally, the actor had gained access to the server, which stored customer responses to web forms from the websites.
“Customers who were affected by this security breach will be notified individually. Customers who are not contacted have not had their details accessed in the breach.”
MotorCycle Holdings said its internal systems remain secure and unaffected by the breach as the attack was on a third-party vendor.
“There has been no compromise of any other [company] platforms identified at this stage, and the data breach has had no impact on the company’s ongoing operations,” it said.
At this stage, there is no indication as to who was behind the breach nor what the motivations were for the attack. It is also unclear whether MotorCycle Holdings had suffered any material or financial losses as a result of the breach.
“We will continue to keep our customers, shareholders, and key stakeholders updated as we respond to this event and our investigation continues and further facts are established,” said MotorCycle Holdings.
Cyber Daily has reached out to MotorCycle Holdings managing director David Ahmet and company chief financial officer Nicole Spink and will provide an update when more information on the breach becomes available.
Be the first to hear the latest developments in the cyber industry.
