Aristocrat Addresses Cyber Incident Impacting Personal Data

Aristocrat, a leading company in the gaming industry, has confirmed a cyber incident that occurred around 1 June 2023. In this incident, a criminal hacker exploited a recently identified (zero-day) vulnerability in third-party file-sharing software (MOVEit) used by the company. As a result, the hacker was able to access data from a company server, including personal information belonging to Aristocrat employees and other data.

Aristocrat is taking immediate action

Taking the matter seriously, Aristocrat has upheld its commitment to high standards of integrity and the privacy and security of personal data. The company took immediate action in response to the incident, including containing the breach and addressing the software vulnerability. They also engaged with independent experts to assess the extent of the breach, implement necessary safeguards, and fulfill their obligations.

In light of the breach, Aristocrat promptly notified relevant law enforcement agencies, gaming regulatory bodies, and other required authorities. The company also informed all of its employees globally about the incident. As a measure of support and protection, Aristocrat is offering complimentary credit monitoring and identity theft protection services to its employees.

Low business impact

Having conducted a comprehensive risk assessment, Aristocrat anticipates a low business impact from the incident. The company has formulated a robust risk management and mitigation plan to address potential consequences. Aristocrat remains dedicated to managing the situation proactively and comprehensively, with the best interests of its people, business, and stakeholders at the forefront.

This incident underscores the importance of strong cybersecurity practices and the continuous efforts required to protect sensitive data in an increasingly digital landscape.