The personal data of millions of Australians has been compromised in a major cyber attack on Optus.
The broadcaster confirmed the data breach in a statement on Thursday afternoon Australian revealed that up to 9 million Australians could be affected.
“Information that may have been disclosed includes customer names, dates of birth, phone numbers, email addresses and, for a subset of customers, addresses, ID numbers such as driver’s license or passport numbers,” the statement said.
“Payment and account passwords were not compromised.”
Almost 2.8 million customers had all their data compromised in the attack, which is believed to have been launched due to a weakness in the telecom company’s firewall. Australian reported.
About 7 million people had information such as dates of birth, email addresses and phone numbers compromised by hackers.
The breach affects current and former Optus customers.
CEO Kelly Bayer Rosmarin said the telecommunications company immediately stopped any further action after learning of the attack, and authorities were called in to help investigate the source.
“We are very sorry and we understand that customers will be concerned,” she said.
“Please be assured that we are making every effort and liaising with all relevant authorities and organizations to protect our customers as much as possible.
“Optus has also notified key financial institutions about this matter. While we are not aware of any harm to customers, we encourage customers to be more aware of their accounts, including keeping an eye out for unusual or fraudulent activity and any notifications that seem strange or suspicious.”
Optus said its services were not affected by the breach and remained safe to use, with messages and voice calls unaffected.
Optus says it will send “proactive personalized notifications” to customers it says are at “increased risk”, but says it will not send any links in emails or SMS messages.
The telco told customers to head to their website for information or contact them with any concerns.
The Australian Federal Police (AFP) has been notified of the incident but no referral has yet been made.
“AFP is aware of the incident but cannot comment further,” an NCA spokesperson told NewsWire.
Still to come.
Originally published as Up to 9 million Australians affected by massive Optus data breach