(Reuters) — Optus, the Australian unit of telecom company Singapore Telecommunications, said it is investigating unauthorized access to customer data including home addresses, driver’s licenses and passport numbers, following a cyber attack.
Wireless operator Optus said in a statement on Thursday that it had immediately shut down the attack after discovering it, and that payment details and account passwords had not been compromised.
Optus CEO Kelly Bayer Rosmarin said the company had notified the Australian Federal Police after noticing “unusual activity”.
Bayer Rosmarin told ABC television that the company will contact high-risk customers “quite soon”; and apologized for the incident.
She said names, dates of birth and contact details had been accessed, “in some cases” the driver’s license number and in “a rare number of cases the passport and postal address” had also been revealed.
Investigators are trying to “understand who has accessed the data and for what purpose,” she said.
The Australian newspaper reported that up to 9 million customers may have been affected.