Australia’s second-largest telecommunications company, Optus, has reported a cyber-attack.
The breach exposed customers’ names, dates of birth, phone numbers and email addresses.
The company – which has more than ten million subscribers – says it has shut down the attack but not before other details such as driver’s licences and passport numbers were hacked.
Optus says payment data and account passwords were not compromised. The BBC is not responsible for the content of external sites.
The company said it would notify those at “heightened risk” but all customers should check their accounts. Chief executive Kelly Bayer Rosmarin apologised to its customers.
She said names, dates of birth and contact details had been accessed, “in some cases” the driving licence number, and in “a rare number of cases the passport and the mailing address” had also been exposed.
The company had notified the Australian Federal Police after noticing “unusual activity”.
And investigators were trying “to understand who has been accessing the data and for what purpose”.
Optus says the type of information that may have been hacked includes customers’
- dates of birth
- phone numbers
- email addresses
- ID document numbers such as driver’s licence or passport numbers
“Optus is working with the Australian Cyber Security Centre to mitigate any risks to customers,” a statement on its website said.
“Optus has also notified key financial institutions about this matter.
“While we are not aware of customers having suffered any harm, we encourage customers to have heightened awareness across their accounts, including looking out for unusual or fraudulent activity and any notifications which seem odd or suspicious.”