Australia aims to change privacy rules after huge cyberattack on telecom firm
Home addresses, drivers' licences and passport numbers of up to 10-million customers were compromised
26 September 2022 - 08:06
byLewis Jackson, Renju Jose and Byron Kaye
Support our award-winning journalism. The Premium package (digital only) is R30 for the first month and thereafter you pay R129 p/m now ad-free for all subscribers.
A woman uses her mobile phone as she walks past in front of an Optus shop in Sydney, Australia, in this file photograph. Picture: REUTERS/DANIEL MUNOZ
Sydney — Australia plans to change privacy rules, allowing banks to be alerted faster to cyberattacks on companies, Prime Minister Anthony Albanese said on Monday, after hackers targeted the country's second-largest telecom firm.
Optus, owned by Singapore Telecoms, said last week that home addresses, drivers' licences and passport numbers of up to 10-million customers, or about 40% of the population, were compromised in one of Australia's biggest data breaches.
The attacker's IP address, or unique identifier of a computer, appeared to move between countries in Europe, the company said, but declined to detail how security was breached.
Albanese called the incident “a huge wake-up call” for the corporate sector, saying some state actors and criminal groups want to access people's data.
“We want to make sure … that we change some of the privacy provisions there so that if people are caught up like this, the banks can be let know, so that they can protect their customers as well,” he told radio station 4BC.
Cybersecurity m.Minister Clare O'Neil told parliament she sees a “very substantial” reform task ahead in resolving a legally and technically complex issue.
“One significant question is whether the cybersecurity requirements that we place on large telecommunications providers in this country are fit for purpose,” she said.
“In other jurisdictions, a data breach of this size would result in fines amounting to hundreds of millions of dollars.”
Optus has alerted customers whose driving licence or passport numbers were stolen, a company spokesperson said in an emailed statement. Payment details and account passwords were not compromised, it added.
Australia has been looking to beef up cyber defences and pledged in 2020 to spend A$1.66bn over the decade to strengthen the network infrastructure of firms and homes.
Support our award-winning journalism. The Premium package (digital only) is R30 for the first month and thereafter you pay R129 p/m now ad-free for all subscribers.
Australia aims to change privacy rules after huge cyberattack on telecom firm
Home addresses, drivers' licences and passport numbers of up to 10-million customers were compromised
Sydney — Australia plans to change privacy rules, allowing banks to be alerted faster to cyberattacks on companies, Prime Minister Anthony Albanese said on Monday, after hackers targeted the country's second-largest telecom firm.
Optus, owned by Singapore Telecoms, said last week that home addresses, drivers' licences and passport numbers of up to 10-million customers, or about 40% of the population, were compromised in one of Australia's biggest data breaches.
The attacker's IP address, or unique identifier of a computer, appeared to move between countries in Europe, the company said, but declined to detail how security was breached.
Albanese called the incident “a huge wake-up call” for the corporate sector, saying some state actors and criminal groups want to access people's data.
“We want to make sure … that we change some of the privacy provisions there so that if people are caught up like this, the banks can be let know, so that they can protect their customers as well,” he told radio station 4BC.
Cybersecurity m.Minister Clare O'Neil told parliament she sees a “very substantial” reform task ahead in resolving a legally and technically complex issue.
“One significant question is whether the cybersecurity requirements that we place on large telecommunications providers in this country are fit for purpose,” she said.
“In other jurisdictions, a data breach of this size would result in fines amounting to hundreds of millions of dollars.”
Optus has alerted customers whose driving licence or passport numbers were stolen, a company spokesperson said in an emailed statement. Payment details and account passwords were not compromised, it added.
Australia has been looking to beef up cyber defences and pledged in 2020 to spend A$1.66bn over the decade to strengthen the network infrastructure of firms and homes.
Reuters
Queen’s death must lift Australia’s ‘embrace of service to the community’
Would you like to comment on this article?
Sign up (it's quick and free) or sign in now.
Please read our Comment Policy before commenting.
Most Read
Related Articles
Russia behind crippling cyberattack ahead of invasion of Ukraine, says EU
SA ranked sixth country most affected by cybercrime, research finds
PODCAST | Risk of cyberwarfare rises due to Russia-Ukraine war
Published by Arena Holdings and distributed with the Financial Mail on the last Thursday of every month except December and January.