"Organisations need to regularly review and improve security systems to avoid data breaches."
The incident was brought to light after Telstra contacted the ACMA to advise that it had learnt, via a journalist, that the names, phone numbers and addresses of around 15,775 Telstra customers had been available on the internet.
The same journalist alerted the OAIC to the matter. Telstra also advised that there were at least 166 unique downloads of these records.
According to a OAIC statement, when Telstra discovered the problem it took steps to disable all public access links to the source and to have Google caches cleared to ensure that the data could not be accessed via a Google search undertook remediation steps as appropriate took steps to contact all affected customers.
Sign up for CIO Asia eNewsletters.