Home > Security > Security News

TPG Telecom Cyber Incident Exposes Thousands of Customers’ Data Through iiNet Breach in Australia

Published on August 19, 2025
Written by:
Lore Apostol
Lore Apostol
Cybersecurity Writer
Telecom Tower - Server - Data
Summarize with:
ChatGPT logo ChatGPT Claude.ai logo Claude.ai Google AI logo Google AI Grok logo Grok Perplexity logo Perplexity
Google logo Add as preferred source on Google

Australia's second-largest internet service provider, TPG Telecom, confirmed on Tuesday a significant cyber incident affecting its iiNet subsidiary systems. The breach involved unauthorized access to an order management system, compromising sensitive customer information.

Breach Scope and Compromised Data

The iiNet data breach resulted in the extraction of substantial customer information from the telecommunications provider's systems. According to official reports cited by Reuters, attackers accessed:

The compromised order management system, acquired by TPG Telecom in 2020, serves as a critical software tool for tracking customer service orders, including broadband connections and related telecommunications services. 

While the data breach exposed significant personal information, company officials confirmed that the system does not contain identity documents, cards, or banking information, potentially limiting the scope of financial exposure for affected customers.

Investigation and Response Protocol

TPG Telecom's cybersecurity measures were immediately activated, the breach was contained, and third-party access was removed over the weekend. 

Early investigations suggest that hackers gained access to the system via stolen employee account credentials, as recently reported by ABC Australia, indicating a targeted attack vector commonly exploited by cybercriminal organizations.

Current assessments indicate no impact on broader TPG Telecom systems, suggesting the attack remained isolated to the iiNet infrastructure.

This incident highlights the growing cybersecurity challenges faced by the telecommunications sector, where customer data security remains a top priority for service providers managing extensive databases of personal information across their operational networks.

In July, SK Telecom suffered a data breach, while AT&T Inc., Verizon, and Lumen Technologies have also been targeted by cyberattacks. Third-party CRMs have recently been targeted in a wave of social engineering attacks, including the Clorox and Cognizant case and the Salesforce-related campaigns.

Add a Comment
Related
Two New Jersey Individuals Sentenced to Prison in North Korea IT Worker Scheme
Sweden Thermal Plant Cyberattack Linked to Russian Threat Actors
Email Scammers
Russian Hacking Campaign Targeting Ukraine and NATO, Attributed to APT28
Meta 3D Logo
Milan Court Accepts Meta Platforms Class Action Over Facebook Personal Data Scraping Affecting 35 Million Users
cybercrime_report
Global Cybersecurity Risks Led by State-Sponsored Groups: China-Nexus Threat Activity Increases by 75%, Hacktivist Activity by 60%
WordPress Logo
WordPress ‘Essential Plugin’ Backdoor Disseminated to Over 20,000 Active WordPress Installations
Most Popular
Two New Jersey Individuals Sentenced to Prison in North Korea IT Worker Scheme
Sweden Thermal Plant Cyberattack Linked to Russian Threat Actors
Email Scammers
Russian Hacking Campaign Targeting Ukraine and NATO, Attributed to APT28
Meta 3D Logo
Milan Court Accepts Meta Platforms Class Action Over Facebook Personal Data Scraping Affecting 35 Million Users
cybercrime_report
Global Cybersecurity Risks Led by State-Sponsored Groups: China-Nexus Threat Activity Increases by 75%, Hacktivist Activity by 60%
WordPress Logo
WordPress ‘Essential Plugin’ Backdoor Disseminated to Over 20,000 Active WordPress Installations
Two New Jersey Individuals Sentenced to Prison in North Korea IT Worker Scheme
Sweden Thermal Plant Cyberattack Linked to Russian Threat Actors
Russian Hacking Campaign Targeting Ukraine and NATO, Attributed to APT28
Milan Court Accepts Meta Platforms Class Action Over Facebook Personal Data Scraping Affecting 35 Million Users
Global Cybersecurity Risks Led by State-Sponsored Groups: China-Nexus Threat Activity Increases by 75%, Hacktivist Activity by 60%
WordPress ‘Essential Plugin’ Backdoor Disseminated to Over 20,000 Active WordPress Installations

Most Popular
Two New Jersey Individuals Sentenced to Prison in North Korea IT Worker Scheme
Sweden Thermal Plant Cyberattack Linked to Russian Threat Actors
Email Scammers
Russian Hacking Campaign Targeting Ukraine and NATO, Attributed to APT28
Meta 3D Logo
Milan Court Accepts Meta Platforms Class Action Over Facebook Personal Data Scraping Affecting 35 Million Users
cybercrime_report
Global Cybersecurity Risks Led by State-Sponsored Groups: China-Nexus Threat Activity Increases by 75%, Hacktivist Activity by 60%
WordPress Logo
WordPress ‘Essential Plugin’ Backdoor Disseminated to Over 20,000 Active WordPress Installations
Two New Jersey Individuals Sentenced to Prison in North Korea IT Worker Scheme
Sweden Thermal Plant Cyberattack Linked to Russian Threat Actors
Russian Hacking Campaign Targeting Ukraine and NATO, Attributed to APT28
Milan Court Accepts Meta Platforms Class Action Over Facebook Personal Data Scraping Affecting 35 Million Users
Global Cybersecurity Risks Led by State-Sponsored Groups: China-Nexus Threat Activity Increases by 75%, Hacktivist Activity by 60%
WordPress ‘Essential Plugin’ Backdoor Disseminated to Over 20,000 Active WordPress Installations

TechNadu keeps you informed with the latest in cybersecurity, VPNs, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2026 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: