Australian hackers have stolen customer data from Australian ISP AAPT to highlight the dangers of a proposal to force telcos to store every Australian’s web history for up to two years.
According to the Sydney Morning Herald, the attack happened at 9.30pm last night, Aussie time.
The Australian government is planning a “data retention” law in the face of strident opposition from internet freedom advocates who believe it is unnecessary, invasive and could expose Australians to privacy risks.
The law is supported by the spooks and cops who argue without data retention countless crimes would go unsolved.
The data has not been made public yet, but the hacker who claims to have stolen told scmagazine.com.au that he stole it “to prove a lack of security at ISPs and telcos” would inevitably expose any web history data collected under the data retention scheme.
AAPT’s David Yuile said preliminary findings suggested that two files were compromised and that the data was “historic, with limited personal customer information”.
The servers were old and had not been used or connected to AAPT for at least 12 months.
Given that the whole idea of the hack was to show how dangerous old data can be, we would have thought it made an appropriate target. After all, if ISPs are forced to keep data for two years there is going to be a lot of old servers sitting around with ancient data on them.
Intel must be laughing all the way to the bank.