About Us

About Us

Learn more about the team at forefront of the Australian Cyber Security scene.

Awards and Partners

Learn more about out renowned partners and awards.

Careers

Meet the Team

Media
Solutions
Featured Categories

Offensive Security

Expert penetration testing

Adversary Simulation

Simulate real attacks

Cyber Advisory

Governance, Audits & Strategy

Virtual CISO

Security-as-a-service

Managed Detection & Response

24x7x365 Security Operations Centre

Digital Forensics & Incident Response

Incident Investigations and Remediation

View all services →

Products

Gridware Managed Services
Comprehensive & proactive security

Gridware 360
24x7x365 End-to-end security suite

Gridware Cloud 360
Harness the benefits of cloud technology

Incident Response Retainer
Swift, expert-led incident resolution

Industries we serve

Education

Finance

Fintech

Government

Healthcare

Legal

Nonprofit

Technology

Utilities

Regulatory Expertise

Data Privacy

GDPR

ISO 27001

ASD Essential 8

SOCI Act

APRA CPS 234

CIS 18

PCI DSS

NIST CSF

View top cyber threats services →
Insights

Resources

A collection of our published insights, whitepapers, customer success stories and more.

Subscribe to Cyber Insights

Success Stories

Customer success stories from real Gridware customers. Find out how we have helped others stay on top of their Cyber Security.

Published Insights

Cybersecurity Latest

Media

Events
Talk to an expert today

Tangerine Telecom Breach Hits 232,000 Customers

Ahmed Khanji
February 26, 2024
Updated: January 23, 2025

Tangerine Telecom recently faced a significant cybersecurity incident, impacting 232,000 customers.

Incident Overview

The breach occurred when threat actors gained access to Tangerine Telecom’s legacy database (an outdated but still used system holding valuable data). Here’s how the breach unfolded step by step:

The threat actor targeted Tangerine Telecom’s legacy database, which still had lots of valuable customer info.
They obtained login credentials that were given to a contractor by Tangerine Telecom for legitimate access.
Using these credentials, the threat actor bypassed the security measures that were supposed to protect the database.
Once past security, they could see and steal the personal information of 232,000 customers from the legacy database.

Essentially, the breach occurred because a contractor’s login details were exploited. In this case, either the credentials were not adequately secured, or there were insufficient monitoring and control mechanisms to detect and prevent unauthorised use of these credentials.

Type of Data Compromised

The database that was accessed by hackers included records from June 2019 to July 2023. A total of 232,000 customers were affected, with the following data being exposed:

Full names
Dates of birth
Mobile and email addresses
Postal addresses
Account numbers

Risk Factor: Medium

Luckily, no financial or identity documents were leaked. However, the personal information that were leaked could lead to more sophisticated phishing schemes or identity theft.

Advice for Those Affected

Tangerine Telecom has already notified all affected individuals about the breach. If you’re one of them, you should have received a message regarding this incident. If you’ve received a message that you’ve been affected by the breach:

Monitor your accounts for any unusual activity and new logins.
Change your passwords, especially if you use the same password for multiple services. You can read our Password Guide for more information on how to choose the best passwords and keep them safe.
consider setting up fraud alerts with your debit or credit card company. Remember that these companies will never ask for your details through SMS.

Ahmed Khanji

Ahmed Khanji is the CEO of Gridware, a leading cybersecurity consultancy based in Sydney, Australia. He is recognised for his insights into offensive security and emerging technologies such as blockchain, and often contributes to broader cybersecurity conversations across the country. With an extensive background as a security advisor to major Australian enterprises, Ahmed helps organisations navigate the evolving threat landscape with clarity and confidence.

Latest Insights

Managed Security vs In-House Security Team: Which Makes More Sense for Your Business?

May 1, 2026

How to Build a Cyber Incident Response Plan for Your Australian Business

May 1, 2026

What Is the ASD Essential Eight and What Does It Mean for Your Business?

May 1, 2026

From Our Blog

Managed Security vs In-House Security Team: Which Makes More Sense for Your Business?

May 1, 2026

How to Build a Cyber Incident Response Plan for Your Australian Business

May 1, 2026

What Is the ASD Essential Eight and What Does It Mean for Your Business?

May 1, 2026

Our services

We partner deeply with clients to understand their needs, working closely and iteratively to provide robust, best-in-class security solutions

Incident Response

Virtual CISO

Enterprise Cybersecurity

Managed CyberSecurity Services

AI Penetration Testing

Cyber Security Resilience

Cybersecurity Tabletop Exercises

Cyber Security Audit

Penetration Testing

ISO 27001 Certification

Company

Key Services

Products

Contact

Sydney Offices

Level 36, Suite 4
Australia Square
264 George Street
Sydney NSW 2000

T. 1300 211 235

Affiliations

Gridware is one of Australia’s leading Cybersecurity consultancies. Employing market-leading talent and with a strong thought leadership contribution to our field, we continue to out-think and out-smart the most innovative and cutting-edge cyber threats of today.

We acknowledge the Gadigal people of the Eora Nation as the Traditional Owners of the land where we work and live. We pay our respects to Elders past, present and emerging.

Terms and Conditions

Vulnerability Disclosure Policy

Security Advisories

Network Penetration Testing

Get a quote

Please fill out the form so we accurately can quote your project:

Are you looking to conduct an internal or external network penetration test?

How many external (or internal) IP addresses are there in the network? Please list all the ranges required for testing.

When should the active portions of the test (scanning, enumeration, exploitation, etc.) be performed? Please specify any required timeframes?

What are the reasons for having this penetration test carried out?

Please specify what type of testing you would prefer we perform. We offer:

Blind – provides the testers with NO information prior to testing. This form of testing gives an indication of what attack surface is visible to a threat actor. Testers have no prior knowledge to access the network or DMZ)

Targeted –a combination of both ‘blind’ and ‘internal’ testing, where the tester may be granted some access and basic knowledge of the system)

Internal Review - working with all level of privilege accounts, where the structure, design, implementation of the network is known to the testers)

If known, please list quantity and details of all external facing network devices present on the network, including: Routers / switches Network storage (NAS) Printers VoIP handsets or softphones

How many servers are present with a public IP address? Please list the type of operating systems, services (e.g. Apache web server, Microsoft IIS, Windows Server 2017 running Active Directory, MS SQL)

Please list your hosting/service providers

Are there any firewalls, intrusion detection/prevention systems, load balancers etc., that may impact the results of the test?

Do you require intensive/stress tests to be conducted i.e. Brute force, DoS and DDoS or load balance tests?

Are there any systems which could be considered fragile? (Tendencies to crash, older operating systems, etc.)

Are backups tested on a regular basis? If so, when was the system last backed up and restored?

Is there any system monitoring software in place?

Any other critical information?

Name

Company Name

Contact Number

Industry

Tangerine Telecom Breach Hits 232,000 Customers

Incident Overview

Type of Data Compromised

Advice for Those Affected

Latest Insights

Managed Security vs In-House Security Team: Which Makes More Sense for Your Business?

How to Build a Cyber Incident Response Plan for Your Australian Business

What Is the ASD Essential Eight and What Does It Mean for Your Business?

From Our Blog

Managed Security vs In-House Security Team: Which Makes More Sense for Your Business?

How to Build a Cyber Incident Response Plan for Your Australian Business

What Is the ASD Essential Eight and What Does It Mean for Your Business?

Related Articles

Our services

Incident Response

Virtual CISO

Enterprise Cybersecurity

Managed CyberSecurity Services

AI Penetration Testing

Cyber Security Resilience

Cybersecurity Tabletop Exercises

Cyber Security Audit

Penetration Testing

ISO 27001 Certification

Download our Cyber Governance Factsheet

Network Penetration Testing

Get a quote

Emergency Assistance

Under Attack?

Download our Incident Response Factsheet

Tangerine Telecom Breach Hits 232,000 Customers

Incident Overview

Type of Data Compromised

Advice for Those Affected

Latest Insights

From Our Blog

Related Articles​

What Is a Managed Security Service Provider (MSSP)?

Managed Security vs In-House Security Team: Which Makes More Sense for Your Business?

How to Build a Cyber Incident Response Plan for Your Australian Business

Our services

Download our Cyber Governance Factsheet

Network Penetration Testing

Get a quote

Emergency Assistance

Under Attack?

Download our Incident Response Factsheet

Related Articles