Telstra, Australia’s largest telecommunications company, has become the latest telecommunications company to deal with a data breach after thousands of employee personal data were uploaded to the dark web almost two weeks after Optus reported its own breach.
“There has been no breach of Telstra’s systems and no customer account data was involved,” Narelle Devine, the company’s chief information security officer for the Asia Pacific region, said.
According to the company, the breach targeted a third-party platform called Work Life NAB, which is no longer operational, and the data leaked on the internet concerned a now-defunct reward program for Telstra employees. Telstra also stated that the breach was discovered last week, and that the information included first and last names as well as the email addresses used to sign up for the program.
Up to 30,000 names and email addresses of former and current employees have been uploaded to the dark web, according to a Telstra spokesman.
“No customer account information was included, we believe it’s been made available now in an attempt to profit from the Optus breach. The relevant authorities have been notified, we’ve let current employees know, and while the data is of minimal risk to former employees, we will attempt to notify them too,” the spokesman said.
The sources for this piece include an article in TheHackerNews