Just weeks after Optus disclosed that the data of 10 million users had been exposed in a data breach, its parent company, Singtel, is coping with two of its own data intrusions, according to The Guardian. Singtel acknowledged that information taken from Singtel in a 2020 cyber-attack appeared in a post on a data breach forum on Friday. The guy who threatened to publish Optus’s stolen data there last month was a member of the same community.
Singtel said that Accellion FTA, a file transfer program it utilized, has a zero-day vulnerability that had been used by hackers in late 2020 to steal Singtel files. When the hack was discovered in February of last year, the organization immediately stopped using the system and began analyzing what information might have been exposed. Singtel notified customers who were impacted, but the post on the site for data leaks is said to be the first time the data has allegedly been made public online.