Personal Data Of 60,000 Telstra Customers Exposed To Web

Australian telecommunications giant says it is 'investigating' proprietary customer lists found with simple browser search

Dark Reading Staff, Dark Reading

December 13, 2011

1 Min Read

Unencrypted data on some 60,000 customers of Telstra -- one of Australia's largest telecommunications carriers -- has been found easily accessible on the Web.

According to news reports, a user found the database after doing a Web search for a Telstra customer support phone number.

The page has been disabled, but users who saw the file said they were able to find Telstra's customer database based on the customer's last name, account number, sales force ID, or reference number, according to the reports.

The file contained information on what broadband plan the users are on, what other Telstra services they're using, and notes on customers' accounts, including usernames and passwords, the reports said. It also contained data about technician visits, SMS messages sent to private mobile numbers, and credit check details.

"We apologize to customers who may have been impacted by this issue," Telstra said in a statement. "Telstra takes its customers privacy seriously. The site has been disabled and a full investigation is underway. Telstra will brief the Privacy Commissioner."

Have a comment on this story? Please click "Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.

About the Author(s)

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like

More Insights