Optus customers who’ve had their personal details leaked in recent months are facing fresh fears, with cyber criminals targeting them with “opportunistic” threats.
Over 10 million people have been affected by the breach, in which customers’ private details, including drivers license and passport numbers, were posted online.
Since then, cyber criminals looking to cash in on the breach have launched attack after attack on the Optus victims, harassing them with fake SIM card replacement requests, fake compensation claims and other general threats.
The Australian Competition and Consumer Commission (ACCC) has received hundreds of complaints following the leak, as those affected attempt to fight off the scammers.
The ACCC urged those who receive unexpected phone calls not to release personal or financial information.
“Scammers are calling people to advise that there has been a suspicious purchase or transaction on their online account. They may claim there is a problem because of the Optus data breach. They will request your personal or financial information such as credit card details,” the ACCC said.
The scams can feature different types of content, using the Optus logo advising a customer has had an error with a bill payment.
“If you receive an unexpected call, check your account independently or contact the organisation in a secure way,” the ACCC said.
The ACCC also said those targeted can expect an increase in phishing emails, phone calls, texts or messages on social media.
People are being urged not to believe these contacts, and bolster their personal security by updating account passwords.
“Optus is not contacting people about issuing new SIM cards. Delete these messages,” the ACCC said.
The ACCC also received reports of fake emails advising breach victims the hackers had been caught and ordered to pay for their actions.
They have even gone as far as to imitate the government, with Medicare branding plastered over fake emails requesting payments.
Around the country, people are lining up to change their personal information, including drivers licenses and passport numbers.
Although initially said to be a “sophisticated attack”, Optus is facing backlash over speculation the breach allowed hackers to “opportunistically steal the information”.
The telco has announced it has employed Deloitte to conduct a review into its cyber security and processes.
Optus customers who may have had their data stolen are urged to:
– Secure bank accounts, apply for a credit ban where necessary to stop people taking out loans in your name.
– Contact your super fund,
– Replace you drivers license, Medicare card and passport,
– Change account passwords,
– Be careful of possible scam calls/messages.