Optus Advanced Cyber ​​Attack, 40 Percent of Australian Population Data Hacked

Australian telecommunications company Optus has contracted a sophisticated cyberattack. (photo: @Optus)

JAKARTA – Cyber ​​attacks continue to appear in a number of countries. The latest in Australia, when the telecommunications company No. 2 in the country, Optus, which is owned by Singapore Telecommunications Ltd said it would contact up to 10 million customers whose personal data was taken in a "sophisticated" hack. However they added that none of the corporate clients were hacked.

Optus chief executive Kelly Bayer Rosmarin said she was angry and regretful that an overseas-based entity had broken into the company's customer information database and then accessed home addresses, driver's licenses and passport numbers in the nation's largest cybersecurity breach.

A total of 9.8 million accounts could be compromised, equivalent to 40% of Australia's population. “That is the absolute worst case scenario (and) we have reason to believe the numbers are actually smaller than that,” said Bayer Rosmarin.

Bayer Rosmarin said corporate customers appeared to be unaffected and there was no indication the intruder took customer bank account details or passwords. Police and cybersecurity authorities are still investigating the attack Optus announced to customers on Thursday, September 22.

"We will identify specifically which customers (affected) and proactively contact each customer with a clear explanation of their information that has been exposed and retrieved," Bayer Rosmarin said in an online media briefing, Friday, September 23.

Hi, we are working closely with the Australian Cyber Security Centre, key regulators and authorities to mitigate any risks to customers. We also notified the Australian Federal Police and financial institutions.(1/3)

— Optus (@Optus) September 22, 2022

"I'm angry that there are people out there who want to do this to our customers. I'm disappointed that we couldn't prevent it and I'm very sorry," she added, as quoted by Reuters.

She declined to provide details on how the attackers attacked the company's security. But citing an ongoing criminal investigation, they have recorded the attacker's IP address which appears to be constantly moving between countries, in Europe.

As a major telecommunications company, Optus sees itself as a target for cyber attacks and routinely resists attempts to penetrate its systems. "But this one is nothing like anything we've seen before, and unfortunately it worked."

In an update on Saturday, September 24 Optus has reached out to "all customers to inform them of the impact of the previously announced cyberattack, if any, on their personal details".

"We will start with customers whose ID document numbers may have been compromised, all of which will be notified today. We will notify unaffected customers at the last opportunity," she said in a statement. "No passwords or financial details were compromised."

The Sydney Morning Herald on Saturday also reported that Optus was investigating threats to sell millions of customers' personal information online unless the company pays hackers $1 million in cryptocurrency.

Asked about the report, a spokesman for the Australian Federal Police told Reuters police were aware of reports alleging stolen Optus customer data and credentials might be sold through a number of forums including on the Dark Web.

Optus said because the attack was being investigated by police, while they could not comment on certain aspects of the incident.

"I'm angry that there are people out there who want to do this to our customers. I'm disappointed that we can't prevent it and I'm so sorry," he added.

He declined to provide details on how attackers attacked the company's security. But citing ongoing criminal investigations, they have recorded an IP address for attackers that appear to continue to move between countries, in Europe.

As a major telecommunications company, Optus considers himself a target for cyber attacks and routinely rejects attempts to penetrate the system. "But this one is not similar to anything we've seen before, and unfortunately it worked," he said.

In an update on Saturday, September 24, Optus had contacted "all customers to inform them of the impact of the previously announced cyberattack, if any, on their personal details".

"We will start with customers whose ID document numbers may have been compromised, all of whom will be notified today. We will notify customers who were not affected at the last chance," he said in a statement. "No code or financial details have been compromised."

The Sydney Morning Herald on Saturday also reported Optus was investigating threats to sell millions of subscribers' personal information online unless the company was willing to pay $1 million in cryptocurrency to hackers.

Asked about the report, Australia's Federal Police spokesman told Reuters police were aware of reports accusing the stolen and credential customer data of being sold through a number of forums including the Dark Web.

Optus said the attack was being investigated by police, while they could not comment on specific aspects of the incident.