Optus has been hit with a major cyberattack which has compromised the personal information of up to nine million customers across the country.
The cyberattack is believed to have stolen the personal details of about 2.8 million customers, the Australian reported, including their passport and driver’s license numbers, email and home addresses, date of birth and phone numbers.
Payment detail and account passwords have not been compromised.
Optus confirmed the cyberattack in a statement on Thursday afternoon and said it was investigating the “possible unauthorised access of current and former customers’ information”.
“Upon discovering this, Optus immediately shut down the attack,” the company said in a statement.
“Optus is working with the Australian Cyber Security Centre to mitigate any risks to customers.”
The telco company has also notified the Australian Federal Police, the Office of the Australian Information Commissioner and key regulators.
“We are devastated to discover that we have been subject to a cyberattack that has resulted in the disclosure of our customers’ personal information to someone who shouldn’t see it,” Optus CEO Kelly Bayer Rosmarin said.
“As soon as we knew, we took action to block the attack and began an immediate investigation. While not everyone may be affected and our investigation is not yet complete, we want all of our customers to be aware of what has happened as soon as possible so that they can increase their vigilance.
“We are very sorry and understand customers will be concerned. Please be assured that we are working hard, and engaging with all the relevant authorities and organisations to help safeguard our customers as much as possible.”
An Optus spokesperson told SkyNews.com.au it is notifying all customers of the cyberattack, even though some of them would not be impacted.
More to come.