Personal Data Of 60,000 Telstra Customers Exposed To Web
Australian telecommunications giant says it is 'investigating' proprietary customer lists found with simple browser search
Unencrypted data on some 60,000 customers of Telstra -- one of Australia's largest telecommunications carriers -- has been found easily accessible on the Web.
According to news reports, a user found the database after doing a Web search for a Telstra customer support phone number.
The page has been disabled, but users who saw the file said they were able to find Telstra's customer database based on the customer's last name, account number, sales force ID, or reference number, according to the reports.
The file contained information on what broadband plan the users are on, what other Telstra services they're using, and notes on customers' accounts, including usernames and passwords, the reports said. It also contained data about technician visits, SMS messages sent to private mobile numbers, and credit check details.
"We apologize to customers who may have been impacted by this issue," Telstra said in a statement. "Telstra takes its customers privacy seriously. The site has been disabled and a full investigation is underway. Telstra will brief the Privacy Commissioner."
Have a comment on this story? Please click "Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.
About the Author(s)
You May Also Like
Why Effective Asset Management is Critical to Enterprise Cybersecurity
May 21, 2024Finding Your Way on the Path to Zero Trust
May 22, 2024Extending Access Management: Securing Access for all Identities, Devices, and Applications
June 4, 2024Assessing Software Supply Chain Risk
June 6, 2024Preventing Attackers From Wandering Through Your Enterprise Infrastructure
June 19, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024