Telstra ‘internal error’ leaks details of 132,000 customers

Telstra internal error customers affected
FILE PHOTO: A man looks at his phone as he walks past a Telstra logo adorning a phone booth in the central business district (CBD) of Sydney in Australia, February 13, 2018. REUTERS/David Gray

SYDNEY (Reuters) – Australia’s largest telecoms firm Telstra Corp Ltd said on Sunday that 132,000 customers were impacted by an internal error that led to the disclosure of customer details.

Telstra internal error – a misalignment of databases

Telstra, which has 18.8 million customer accounts equivalent to three-quarters of Australia’s population, said an internal review found the details were made publicly available due to “a misalignment of databases”.

Telstra referred Reuters to a company blog post, issued on Friday, that said “some customers’ names, numbers and addresses” were listed when they should not have been.

“We are removing the identified impacted customer details from the Directory Assistance service and the online version of the White Pages,” Telstra chief financial officer Michael Ackland said in a statement.

The errant disclosure comes after the company in October suffered what it called a small data breach, attributing it to third-party intrusion that exposed some employee data back to 2017.

A Telstra internal staff email put the number of affected current and former employees of that breach at 30,000, according to local media.

Regarding the current issue, Ackland said “no cyber activity was involved”.

Protecting customers paramount

“Protecting our customers’ privacy is absolutely paramount, and this is an unacceptable breach of their trust,” he added.

“We are in the process of contacting every impacted customer to let them know what has occurred.”

Australia’s telco, financial and government sectors have been on high alert since Optus, owned by Singapore Telecommunications Ltd, revealed on Sept. 22 that a system breach may have compromised up to 10 million accounts.

The data exposed in that breach, taken as part of a sophisticated hack, included home addresses, driver’s licenses and passport numbers in what was one of Australia’s biggest cybersecurity breaches.

(Reporting by Sam McKeith; Editing by David Gregorio)

Related article: Australia to change privacy rules in wake of Optus attack

Be the first to comment

What do you think?

This site uses Akismet to reduce spam. Learn how your comment data is processed.