Optus hack apology: Full page ad saying sorry for customer data leak cyber attack

Optus has published a humiliating full-page ad apologizing for the “devastating” cyber attack that saw the personal details of millions of customers exposed to the hackers.

“We are deeply sorry,” the message from the carrier said.

“We are deeply sorry that a cyberattack occurred while we were watching. We know this is devastating and we will need to work hard to restore your trust. The attack was quickly stopped, and we are working closely with the authorities to understand how this attack on your privacy occurred.

Our priority is to prevent harm to customers. We are here to help and support you through any personal concerns you may have.

“We know there is a lot of information and misinformation out there, and we’ve heard your message that we need to communicate more clearly. That’s why we haven’t put together accessible material to keep you informed of actions you can take at optus.com.au/support/cyberattack”

About 9.8 million current and former Optus customers likely had sensitive personal information, including names, addresses, phone numbers, emails, employment history, passport, driver’s license, and Medicare number, in the hack.

The major security flaw, which the carrier revealed last week, is the largest data breach in Australia’s history.

The alleged hacker, known only as Optusdata – a user on anonymous website BreachForums – had originally demanded Optus pay $1 million ($1.5 million) in Monero cryptocurrency as ransom.

Early in the week, the cybercriminal released the data of 10,000 customers in an attempt to pressure Optus to give in to their ransom demands – but within hours sensationally announced that they were holding back and would not sell or leak any further data, claiming there were “too many eyes” on them.

In the letter, the alleged hacker apologized to the Australians affected by the data leak and said they could not disclose more data even if they wanted to because they “personally deleted the data from the drive”, which they claimed was the only copy.

They also offered their “deepest apologies” to Optus, saying they “hope everything goes well with this”.

“Optus if you have [sic] In reading we will report the exploit if you have a way to contact. No security mail, no bug rewards, no message either.”

“The ransom hasn’t been paid but we don’t care anymore.”

The alleged hacker claimed that it was a “mistake” in publishing the data in the first place.

Optusdata has since disappeared from the forum, after peers mocked her for the sudden reversal.

The Australian Federal Police announced on Friday that it will launch Operation Guardian in partnership with state and territory authorities, the private sector and industry to protect victims of the Optus hack.

“Customers affected by the breach will receive multi-jurisdictional, multi-layered protection from identity crime and financial fraud,” AFP said in a statement.

“Priority will be given to the 10,000 individuals, who are likely to have 100 identification points issued online.”

Authorities will monitor online forums, the Internet, and the dark web for “other criminals trying to exploit personal information released online,” and will work with the financial services industry to uncover criminal activity linked to the data breach.

It will also analyze trends from ReportCyber ​​to determine if there are links between exploited individuals, and to identify and disrupt cybercriminals.

“Operation Guardian will use the collective legislative powers, expertise, investigative and intelligence capabilities of all Australian police authorities,” the statement said.

Earlier in the week, Optus confirmed that valid Medicare ID numbers for 14,900 Australians had been disclosed, and that all affected customers would be contacted within 24 hours.

Additionally, Optus advised that 22,000 expired Medicare numbers have been accessed.

“Please ensure that people cannot access your Medicare details using only your Medicare number,” Optus said in a statement Wednesday evening.

“If you are concerned or affected, you can replace your Medicare card as advised by Services Australia.”

The federal government is “outraged” that Optus took five days to be notified of the Medicare data breach after the September 22 cyber attack was revealed.

“We have not been notified that among the passport details, driver’s license details, etc., that Medicare details were also the subject of this breach,” Health Secretary Mark Butler told ABC Radio.

“So we are obviously very concerned about this data loss, and we are working hard to deal with the consequences of that. We are looking into [getting people new Medicare numbers]. We’ll have more to say about that as soon as we can, but we’re looking at that closely.”

Meanwhile, state governments have put in place procedures for hack victims to obtain alternative driver’s licenses, and the federal government has confirmed that alternative passports will also be offered.

Optus is forced to pay the bill.

Prime Minister Anthony Albanese confirmed Friday: “Optus has complied with my request in Parliament and Senator Wong in writing to Optus… that they will cover the costs of replacing affected customers’ passports.”

“I think this is quite appropriate. I find it unusual for the federal opposition to invite taxpayers to foot the bill.”

What to do if you think you have been hacked

• Look for suspicious or unexpected activity across your online accounts, including telecommunications, bank and utility accounts. Make sure to report any suspicious activity in your bank account immediately to your financial institution.

• Do not click on any links in any email or text message claiming to be from Optus.

• If someone calls claiming to be from Optus, the police, a bank, or another organization and offers to help you with a data breach, consider ending the call and contacting the organization at their official contact details. This could be a scammer who is communicating using your personal information.

• Never click on any links that look suspicious and never provide your passwords, bank pins, or any personal or financial information.

• If people pretend to be a credible organization and ask for access to your computer, always say no.

– With Ally Foster and NCA NewsWire

Originally Posted ‘We’re So Sorry’: Optus Posts Humiliating Full-Page Ad Apologizing for Cyber ​​Attack

Related Posts

Leave a Reply

Your email address will not be published. Required fields are marked *