Police say hacker concealed ID in Australian privacy breach

CANBERRA, Australia (AP) — The computer hacker who stole personal data of almost 10 million customers of a telecommunications company in one of Australia’s worst privacy breaches used techniques to conceal their identity, actions and whereabouts, police said on Friday.

Australian Federal Police Assistant Commissioner Justine Gough, who heads cyber investigations, said the international probe, that includes the U.S. Federal Bureau of Investigation, into the Optus cyberattack last week would be “long and complex.”

"You can be assured that our very clever and dedicated cyber investigators are focused on delivering justice for those whose personal information has been compromised,” Gough said.

The government blames lax cybersecurity at Optus, Australia’s second-largest wireless carrier, for the theft of current and former customers’ personal information.

Cybersecurity Minister Clare O’Neil described the crime as “quite a basic hack.” She said Optus, a subsidiary of Singapore Telecommunications Ltd., also known as Singtel, had “effectively left the window open for data of this nature to be stolen.”

Optus maintains it was the target of a sophisticated cyberattack that penetrated several layers of security.

Gough declined to say whether the crime fitted the description of “sophisticated” or “basic.”

“I’m not going to go into the details as to the attack because ... it is subject of our ongoing investigation,” Gough said.

“But I would say that whoever is behind this attack has used obfuscation techniques to conceal their identity, their location and their activity,” she added.

While details of 9.8 million Optus customers were stolen, authorities are most concerned for more than 10,000 customers whose records were dumped on...