BREAKING – Suspected data breach at Westnet

Investigation to be confirmed, no payment details leaked.

Report from Grace Millimaci, The West Australian reveals that there has been a possible breach of the Westnet user database.

The database in question is suspected to contain personal information including personal information and passwords. It is not clear if credit card or other financial information is included in the breach.

An individual contactable via the instant messaging service Jabber claims to have the database and is inviting expressions of interest from prospective buyers.

The information can be used to gain access to accounts and it is recommended that all Westnet users change their email and internet account passwords as soon as possible.

Original story from the West Australian is here.
Original report from the Cyber War News twitter feed here.

EZiWireless has become aware of an email claiming to be from Westnet to its subscribers disclosing the breach and advising users to change passwords.

Westnet users can change their passwords by going to http://www.westnet.com.au/myhelp/ and logging into the My Account service using their existing username and password.

At the time of posting, iiNet the parent company has not been available to comment.

Update : A subscriber to Whirlpool Forums has pasted a copy of an email claiming to be from Westnet.

Security Notification – We recommend changing your password

Dear ….

We are aware of an incident that may have resulted in unauthorised access to customer information stored on our servers. Although this unauthorised access has now been blocked and reported to relevant law enforcement agencies, an investigation has confirmed there was a period in which details associated with your Westnet account were accessible by a third party.

Is my personal information at risk?

Customer username, address, telephone and, in some cases, password information may have been accessed, however, no payment details were stored on the server. The system is now offline and at no further risk.

What should I do next?

As a precautionary measure we recommend you change the passwords associated with your Westnet email addresses immediately to prevent any unauthorised access.

How do I change my password?

To change your password, simply login to MyAccount using your existing Westnet username and password, and select ‘Change Password’ inside the ‘My Account’ section.

Where can I go for more information?

For straightforward instructions on changing your password please read our MyHelp article, and for more general information on online security, please visit our Blog. 
Alternatively we have set up a hotline you can call on 1300 859 388, 24 hours a day 7 days a week.

We have invested heavily to block these types of intrusions, as we take your privacy and the security of your personal information very seriously. Rest assured we will do everything we can to ensure attacks like this are unsuccessful in the future. We sincerely apologise for this breach of security.

Kind regards,

Matthew Toohey
Chief Information Officer

One thought on “BREAKING – Suspected data breach at Westnet

Comments are closed.