September 23, 2023 11:12 am

Telstra and Big Bank Reveal Data Breach Hit More than 30k Employees

Facebook
Twitter
LinkedIn
Pinterest
WhatsApp
Telegram

URGENT: JUST 11 DAYS REMAIN TO HELP SAVE INDEPENDENT MEDIA & ANR, TO ENSURE WE ARE FULLY FUNDED FOR NEXT MONTH,SO LET'S CUT THE BS & GET TO THE POINT - WE WILL BE FORCED LAY OFF STAFF & REDUCE OPERATIONS UNLESS WE ARE FULLY FUNDED WITHIN THE NEXT 2 WEEKS - Sadly, less than 0.5% of readers currently donate or subscribe to us But YOU can easily change that. Imagine the impact we'd make if 3 in 10 readers supported us today. To start with we’d remove this annoying banner as we could fight for a full year...

Telstra and Big Bank Reveal Data Breach Hit More than 30k Employees

By Isabel McMillan and Eli Green

One of Australia’s big four banks and another telco are dealing with their own cyber breaches just days after the Optus hack.

As millions deal with the repercussions of the Optus data breach, more companies have had the data of their employees leaked.

Telstra and NAB have had the names and email addresses of current and former employees accessed by hackers.

Up to 30,000 names and email addresses of past and present Telstra staff were uploaded to the same forum where the Optus breach was shared last week.

NAB says the data of its employees was accessed through a “third-party provider for an employee and member benefits program”.

“This is not a breach of NAB systems,” an NAB spokesperson said.

“None of our customers’ banking or financial information has been breached or compromised.

“The data released is five years old and is very basic, such as names and emails and we believe there is minimal risk.”

NAB has not had a “direct relationship” with the provider for “a number of years”, the spokesperson said.

A Telstra spokesperson confirmed that it was also the subject of a “third party provider” breach.

“It is not a Telstra data breach, it has nothing to do with our systems or networks.”

“The data contained which is staff names and email addresses is from 2017. It’s six years old.”

Telstra confirmed “It involves our employees, many of which no longer work for the company.”

“We’ve been made aware of a data breach affecting a third party that included limited Telstra employee information from 2017.”

“To be clear, it was not a breach of any Telstra systems. The data released is very basic in nature – limited to full names and email addresses used to sign up to the platform.”

“No customer account information was included. We believe it’s been made available now in an attempt to profit from the Optus breach.”

“The relevant authorities have been notified, we’ve let current employees know, and while the data is of minimal risk to former employees, we will attempt to notify them too.”

There is no private, personal information involved in the leak, as only first and last names and work email addresses of employees was shared.

It is understood that hackers are using a technique called data-scraping where old data is pulled together in the hopes that they can sell it as current data.

Telstra has been dealing with a data breach, where details of 30,000 past and present staff were leaked. Picture: Mick Tsikas
Telstra has been dealing with a data breach, where details of 30,000 past and present staff were leaked.

On Saturday, Telstra group executive for transformation, communications and people Alex Badenoch said the data was of a third party which had provided a rewards program for Telstra staff.

A total of 12,800 of the 30,000 names leaked were still employed by Telstra.

“We understand this may cause some anxiety to our people, particularly in the current climate of heightened awareness around cyber security,” Telstra said in a statement to staff.

“If you wish to find out more about the breach, or to find out if your email address was exposed, please contact our cyber team … In the meantime, we remind you as always to remain vigilant about any unexpected communications.”

Telstra is reportedly working with the third party to determine the cause of the breach.

A third party data breach has leaked the work email addresses of past and present employees. Picture: NCA NewsWire / David Mariuz
A third party data breach has leaked the work email addresses of past and present employees.

It comes after millions of Australians had their personal information – including full names, addresses, passports and driver’s licenses – accessed in the broad-ranging breach of the Optus database last week.

About 9.8 million people had information such as dates of birth, email addresses and phone numbers taken by the hackers.

The breach has affected current and former customers of Optus.

Around the country, people are lining up to change their personal information, including drivers license and passport numbers.

The breach is reportedly affecting every government department.

Although initially said to be a “sophisticated attack” Optus is facing backlash over speculation the breach allowed hackers to “opportunistically steal the information”.

On Monday, the telco announced it had employed Deloitte to conduct a review into its cyber security and processes.

Millions were affected by the Optus data breach. Picture: NCA Newswire / Gaye Gerard
Millions were affected by the Optus data breach.

CEO Kelly Bayer Rosmarin said the telco acted immediately to stop any further action after learning of the attack, and authorities had been called in to assist in investigating the source.

“We are very sorry and understand customers will be concerned,” she said.

Optus said it would send “proactive personal notifications” to customers they identify as having “heightened risk”, but says it will not send any links in emails or SMS messages.

The telco told customers to head to their website for information or to contact them with any concerns.

Optus customers who may have had their data stolen are urged to:

-Be careful of possible scam calls;

-Consider strengthening password and other online security measures; and

-Be on the lookout for more information from Optus in the coming days.

Opinion pieces don’t necessarily reflect the position of our news site but of our Opinion writers.

Support the ANR from as little as $8 – it only takes a minute. If you can, please consider supporting us with a regular amount each month. Thank you.

Related News

Subscribe for free to our ANR news emails and access 2 free ebooks plus Reports to share with family and friends about Covid fraud and the danger of the vaccines.

Australian National Review is Australia’s first real free and independent press, one with no editorial control by the elite, but a publication that can generate critical thinkers and critical debate and hold those spreading mistruths and deliberate propaganda in mainstream media to account.

News with a difference that will be educational, compelling and create a platform for political and social change in this country and address the real issues facing this country and the world.

Watch Full Documentary

URGENT: JUST 3 DAYS REMAIN TO HELP SAVE INDEPENDENT MEDIA & ANR, SO LET'S CUT THE BS & GET TO THE POINT - WE WILL BE FORCED TO LAY OFF STAFF & REDUCE OPERATIONS UNLESS WE ARE FULLY FUNDED WITHIN THE NEXT 2 WEEKS

Sadly, less than 0.5% of readers currently donate or subscribe to us But YOU can easily change that. Imagine the impact we'd make if 3 in 10 readers supported us today. To start with we’d remove this annoying banner as we could fight for a full year...

Get access to TruthMed- how to save your family and friends that have been vaxx with vaccine detox, & how the Unvaxxed can prevent spike protein infection from the jabbed.

Free with ANR Subscription from $8

Download the Full PDF - THE COVID-19 FRAUD & WAR ON HUMANITY