iiNet, one of Australia’s major internet service providers, has confirmed a cybersecurity breach that compromised sensitive customer details stored in its order management system. The incident, discovered internally on 16 August, affects both current and former clients whose data remains in the system for legal and operational requirements.
Investigators revealed that attackers gained access to about 280,000 active iiNet email addresses and 20,000 landline phone numbers. In addition, personal records such as around 10,000 usernames, mailing addresses, contact numbers, and approximately 1,700 modem setup passwords were also exposed.
The company reassured customers that critical details including passports, driver’s licences, and banking or payment information were not kept in the affected system and therefore remain secure. The order management platform, which is used to process services such as National Broadband Network connections, was the only system impacted.
Following the breach, iiNet activated its incident response plan, engaged external cybersecurity experts, and notified federal authorities including the Australian Cyber Security Centre, the National Office of Cyber Security, and the Office of the Australian Information Commissioner to support the ongoing investigation.
The provider has started contacting affected customers directly, expressing regret for the incident and advising them on steps to protect their accounts. iiNet has stressed that its immediate focus is on containing the breach and restoring customer confidence.
This breach incident highlights the serious risks posed by cyberattacks on essential service providers. While financial details were not exposed, access to usernames, email addresses, contact information, and device passwords can still leave customers vulnerable. The breach serves as a reminder of the need for strong cybersecurity measures to safeguard sensitive data in backend systems.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream formerly known as CIO News LinkedIn Account | The Mainstream formerly known as CIO News Facebook | The Mainstream formerly known as CIO News Youtube | The Mainstream formerly known as CIO News Twitter |The Mainstream formerly known as CIO News Whatsapp Channel | The Mainstream formerly known as CIO News Instagram
About us:
The Mainstream formerly known as CIO News is a premier platform dedicated to delivering latest news, updates, and insights from the tech industry. With its strong foundation of intellectual property and thought leadership, the platform is well-positioned to stay ahead of the curve and lead conversations about how technology shapes our world. From its early days as CIO News to its rebranding as The Mainstream on November 28, 2024, it has been expanding its global reach, targeting key markets in the Middle East & Africa, ASEAN, the USA, and the UK. The Mainstream is a vision to put technology at the center of every conversation, inspiring professionals and organizations to embrace the future of tech.
