Australian telecommunications provider Telstra said Tuesday it suffered a “minimal risk” data breach just weeks after rival Optus underwent a major cybersecurity incident.
Telstra, Australia’s largest network provider, attributed the breach to the provider of a now-obsolete employee rewards program.
“There has been no breach of Telstra’s systems. And no customer account data was involved,” the company says. A hacker using the handle PwnSec posted Telstra information to the same online forum where someone last week published two samples of data taken from Optus.
PwnSec attributes the stolen data to My Rewards, a website that connects brands with shoppers. Appearing in the publicly viewable portions of the dataset are emails that correspond to the web domain of National Australia Bank, one of that country’s Big Four lenders. The bank did not respond to an inquiry from Information Security Media Group.
