Aussie Internet provider investigates alleged hack of customer database

 By 
Ariel Bogle
 on 
Share on Facebook Share on Twitter Share on Flipboard
Original image replaced with Mashable logo
Original image has been replaced. Credit: Mashable

Australia's second largest DSL Internet service provider iiNet is investigating claims the database of its subsidiary, Westnet, has been hacked and users' details offered for sale online.

On Sunday, the Twitter account Cyber War News tweeted a post that appeared to show an unknown hacker offering to sell Westnet's customer database. According to the hacker, data included client passwords and more.

SEE ALSO: Hackers cause major data breach for Telstra's Pacnet

seems westnet, one of aussies biggest ISP's has been owned. pic.twitter.com/kYYYjIMJnL— CWN (@Cyber_War_News) June 6, 2015

The hacker did not state a price for the information and the accompanying email address -- [email protected] -- links to a CrimeNet profile of an American hacker, using the alias "Mufasa The God."

Troy Hunt, Microsoft MVP for Developer Security in Australia, tweeted he had "limited sympathy" for Westnet in response to the news, attaching an image that appeared to show an unencrypted connection to the Westnet website.

Must admit to limited sympathy for @westnetau when such irresponsible behaviour is so evident https://t.co/6pXgk0ADWS pic.twitter.com/c0BvUsaK9P— Troy Hunt (@troyhunt) June 6, 2015

Matthew Toohey, iiNet’s Chief Information Officer, confirmed to Mashable Australia the incident is under investigation and had been reported to law enforcement agencies.

iiNet purchased Perth-based Internet and phone services provider Westnet in 2008.

Toohey said the hack may be related to unauthorised access to "old customer information stored on a legacy Westnet system." Customer usernames, addresses, telephone and possibly password information may have been accessed, however no payment details were stored on the server. The system is now offline, he added.

"iiNet takes the privacy and security of customer information extremely seriously," Toohey said. "The 30,827 impacted customers are being contacted with a recommendation they change passwords associated with their accounts as this is the most effective way to ensure security.

"As a precaution, additional steps have been taken to increase the monitoring of impacted accounts."

The biggest stories of the day delivered to your inbox.
These newsletters may contain advertising, deals, or affiliate links. By clicking Subscribe, you confirm you are 16+ and agree to our Terms of Use and Privacy Policy.
Thanks for signing up. See you at your inbox!