Optus Data Breach: Australian Regulators Say They Have Opened Investigations

Optus said in a statement that it would fully engage with the regulators.

By Reuters | Updated: 11 October 2022 12:28 IST

Optus Data Breach: Australian Regulators Say They Have Opened Investigations

Photo Credit: Reuters

ACMA is investigating whether Optus met its industry obligations for keeping, disposing of personal data

Highlights

OAIC investigating Optus to see if it took steps to protect customer data
Optus confirmed that it received formal notices of investigation
The Australian government said that it will overhaul data security laws

Two Australian regulators said on Tuesday they have opened investigations into Optus, the country's number 2 telecoms provider, after a breach of its systems resulted in the theft of personal data from up to 10 million accounts.

The probes only add to headaches for Optus, which disclosed the breach on September 22 and has since come under heavy fire from the government and the public for not preventing the massive cyberattack.

The Office of the Australian Information Commissioner (OAIC) said it was investigating whether the Singapore Telecommunications-owned company took reasonable steps to protect customer data and comply with privacy laws.

Australia Plans Tough Data Protection Laws After Optus Cyberattack

The Australian Communications and Media Authority (ACMA) said it was investigating whether Optus met its industry obligations as a telecommunications provider in terms of the keeping and disposing of personal data.

Amid the widening fallout, the federal government has flagged it will overhaul data security laws to force firms which have had a cyberattack to notify banks about customers who may be compromised. Several law firms are also considering filing class action lawsuits.

The OAIC said in a statement if it finds that "interference with the privacy of one or more individuals has occurred", it may force Optus to take steps to ensure the breach cannot be repeated.

Telstra Employee Data Exposed in Breach, Weeks After Optus Cyberattack

The agency added that if it finds there was a breach of Australian privacy law, it can seek civil penalties of up to AUD 2.2 million (roughly Rs. 11.35 crore) per contravention.

ACMA Chair Nerida O'Loughlin said in a statement that failure by telecommunications providers to safeguard customer information "has significant consequences for all involved".

Australian Competition and Consumer Commission Chair Gina Cass-Gottlieb told a parliamentary hearing the regulator was receiving 600 calls a day from people concerned about the Optus breach, although few had been scammed as a result.

Optus said in a statement that it had received formal notices of investigation from both regulators and that it would fully engage with them.

© Thomson Reuters 2022

5G is here. Should you buy a 4G phone? We discuss this on Orbital, the Gadgets 360 podcast. Orbital is available on Spotify, Gaana, JioSaavn, Google Podcasts, Apple Podcasts, Amazon Music and wherever you get your podcasts.

Affiliate links may be automatically generated - see our ethics statement for details.

Comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.