Optus data hacker backflips on ransom demand, apologises to users

Optus store logo
(Image credit: Marlon Trottmann / Shutterstock)

In a surprising new twist to the Optus hacking saga, the individual or group behind the data breach appears to have rescinded their ransom demand, and now claims they will no longer sell or leak the stolen user data, saying they have deleted the only copy they had. 

In a screenshot which has been shared on Twitter by Jeremy Kirk, a cybersecurity journalist, the online poster also apologises to affected users. 

“Too many eyes. We will not sale [sic] data to anyone,” writes the user. “Sorry to 10,200 Australian [sic] who’s data was leaked.”

“Australia will see no gain in fraud, this can be monitored. Maybe for 10,200 Australian [sic] but rest of population no. Very sorry to you. Deepest apology to Optus for this. Hope all goes well from this,” the post reads.

The proclaimed hacker’s backflip on the ransom demand has not been verified by the Australian Federal Police (AFP) or Optus.

Hacker claims to release details of 10,000 users

Previously, the hacker had made an online ransom demand of US$1 million. The account claiming to have the stolen data also claimed to have released the information of 10,000 users to prove that the data was legitimate.

The online poster, using the screen name ‘optusdata’, had threatened to continue releasing the personal records of 10,000 Optus customers each day until the ransom was paid.

At the time of publication, neither Optus or the AFP had confirmed the validity of the account claiming to have the stolen data, however AFP Assistant Commissioner Cyber Command, Justine Gough, said in a statement: “We are aware of reports of stolen data being sold on the dark web and that is why the AFP is monitoring the dark web using a range of specialist capabilities.”

Kirk had reported that information in the 10,000 leaked records does appear to be legitimate, and that it also appears to contain Medicare numbers – an identity document that Optus has previously not confirmed was included in the hacking.

It has also been claimed that the forum which is being used by the self-proclaimed hacker is itself spreading malware.

Australian minister 'incredibly concerned'

Australia’s minister for Home Affairs and Cyber Security, Clare O’Neil, has released a statement on the reported hacker’s ransom demand. 

“I am incredibly concerned this morning about reports that personal information from the Optus data breach, including Medicare numbers, are now being offered for free and for ransom,” O’Neil said.

“Medicare numbers were never advised to form part of compromised information from the breach. Consumers have a right to know exactly what individual personal information has been compromised in Optus’ communications to them. Reports today make this a priority.”

The Home Affairs minister said on the ABC’s 7:30 program last night (Monday, September 27) that 9.8 million individuals have had their personal information stolen, including dates of birth, phone numbers and email addresses.

She said that the government was particularly concerned about a subset of these customers, around 2.8 million, who have had their identity data stolen, including licence and passport numbers, which puts these individuals at a higher risk of fraud.

Jasmine Gearie
Ecommerce Editor

Jasmine Gearie was previously an Ecommerce Editor at TechRadar Australia, with a primary focus on helping readers find the best mobile and NBN plans. During her time with TechRadar, she also reported on important telco news in Australia, and helped track down tech deals to help readers save money.

Read more
SearchGPT OpenAI
Hackers offer 20 million OpenAI credentials for sale, but it says there's no evidence of a breach
An abstract image of digital security.
Orange confirms it suffered breach after hacker leaks company documents
How to prevent cyberattacks
NTT admits hackers accessed details of almost 18,000 corporate customers in cyberattack
ID theft
Over a million patients potentially hit after another US healthcare provider hit by cyberattack
healthcare
Top IVF firm says hackers accessed private data during cyber incident
Insurance
Globe Life data breach may have affected 850,000 more patients than previously thought
Latest in Cyber Security
The X logo next to a silhouette of Elon Musk
Who was really behind the massive X cyberattack? Here’s what experts say about Elon Musk’s claims
View on National Assembly building in Paris, France, with French and European flags flying.
France rejects controversial encryption backdoor provision
ignal messaging application President Meredith Whittaker poses for a photograph before an interview at the Europe's largest tech conference, the Web Summit, in Lisbon on November 4, 2022.
"We will not walk back" – Signal would rather leave the UK and Sweden than remove encryption protections
Man uses a laptop in a hotel room
4 ways to avoid misinformation on social media and retain control of your newsfeed
An AI face in profile against a digital background.
Worried about DeepSeek? Well, Google Gemini collects even more of your personal data
Apple
"We will never build a backdoor" – Apple kills its iCloud's end-to-end encryption feature in the UK
Latest in News
Super Mario Odyssey
ChatGPT is the ultimate gaming tool - here's 4 ways you can use AI to help with your next playthrough
Ray-Ban smart glasses with the Cpperni logo, an LED array, and a MacBook Air with M4 next to ecah other.
ICYMI: the week's 7 biggest tech stories from Twitter's massive outage to iRobot's impressive new Roombas
Brad Pitt looks over his right shoulder with 'F1' written behind him
Apple Original Films will take you behind-the-scenes of a racing cockpit in this new thrilling F1 movie trailer
AI writer
Coding AI tells developer to write it himself
Reacher looking down at another character from the Prime Video TV series Reacher
Reacher season 3 becomes Prime Video’s biggest returning show thanks to Hollywood’s biggest heavyweight
Finger Presses Orange Button Domain Name Registration on Black Keyboard Background. Closeup View
I visited the world’s first registered .com domain – and you won’t believe what it’s offering today