Telecommunications giant TPG has revealed an email-hosting service used by up to 15,000 iiNet and Westnet business customers has been breached, with the hacker looking for cryptocurrency and other financial information.
TPG said in a release to the Australian Securities Exchange (ASX) on Wednesday that cybersecurity firm Mandiant had found evidence of unauthorised access to a Hosted Exchange service used by iiNet and Westnet business customers.
A Hosted Exchange service is a Microsoft product that is operated by iiNet and Westnet to provide email services to customers – typically as part of a bundle of business or home broadband services.
TPG said initial analysis of the activity on the service showed the aim of the threat actor was to search for customers’ cryptocurrency and financial information.
The company has not said what might have been obtained in the attack, but an investigation is under way and affected customers will be advised.
TPG told the ASX the breach did not affect mobile or broadband services, and access has been cut off for the attacker.