The Optus data leak – should you be worried?
by Tony Phelps, Winch Websites
In a word – yes.
Even people living under a rock (which at least wouldn’t require an internet connection and a password) will have heard about the millions of Australians included in a very large theft of data from Optus.
While the details of how it happened are yet to (and may never) be published, at the end of the day that’s for someone else to worry about. In the meantime, if you are or have been an Optus customer over the past few years, there is a distinct possibility that your personal details are ‘out there’ in internet-land.
Of course, we are all constantly handing over personal details. Think social media, bank accounts, utilities, job applications, loans, credit cards, holidays, government benefits and services… Even if you wanted to, you couldn’t avoid it unless you’re happy living like a hermit – and even then, there are situations where you absolutely have no choice in this self-service internet-powered world.
Not on Optus customer? All this still applies to you, because this is very unlikely to be the last time there’s a data breach like this.
There are 2 aspects to consider. How to protect yourself before a data breach. How to protect yourself after a data breach.
The first aspect, how to protect yourself before a data breach, is all about being careful with your data and being reasonably suspicious of everything. Received a text-message from the ATO asking to update your info or face fines? That’s a hard “No!”. Phone call from someone who wants to fix a virus on your computer? “No!”. Be very (very) careful when people contact you unexpectedly. Treat text messages, phone calls, emails and other such interactions exactly how you would if someone rocked up at your door out of the blue and started yammering at you.
The second aspect, how to protect yourself after a data breach, is very similar but a whole lot more aggro and lost time. The scumbags that have your data can use it either to trick you into giving access to sensitive stuff (eg. your bank account) or they can use your details to independently get stuff (eg. a loan, online purchases, airline tickets to get refunded, etc). Imagine – a phone call from someone saying they’re from Centrelink, they know your full name, your date of birth, your driver’s licence number, your home address, your email address…
A comprehensive list of what details of yours may be taken, how they could be used against you, and what you can do to avoid or rectify issues, can be found on the IDCare website at idcare.org/optus-db-response. It’s worth a read whether you are affected by the Optus data breach or not.
Where once upon a time the scammers operated in town centre markets or door-to-door and so were few and far between, now they operate all over the world with instant access to anyone anywhere. Your shields of cynicism need to be raised, alas, and your trust in people needs to be lowered. Sad, but a fact of modern life.
So educate yourself, and be alert but not alarmed. We already have plenty of larmeds in Australia…..