Australian Politics Forum - Optus customers hacked.

Bobby.

Gold Member

Offline

Australian Politics

Posts: 95298
Melbourne
Gender: male

Re: Optus customers hacked.
Reply #225 - Nov 1^st, 2022 at 1:14pm

Dnarever wrote on Nov 1^st, 2022 at 12:58pm:

Bobby. wrote on Nov 1^st, 2022 at 12:37pm:

Dnarever wrote on Nov 1^st, 2022 at 8:25am:

Quote:

There are aspects of this debate that we wish we were able to discuss more freely

A lot of us likely have such restrictions - There are points here that I have not made for the same reason.

Ummm?

So - I checked my Outlook today and yes it does have an encryption capability but asked
for me to get a certificate online which I don't think is free.
They didn't say.
They also didn't say if the Govt. has a backdoor on it
however I'm certain they do.

If it's true encryption then why should I advertise a public encryption key
which they may have control over - that they may also have access to?
Surely my computer should be able to make its own encryption key and only
provide it to those who need it?
It sounds very fishy to me.

There are several types of encription in play.

1) all transported mail is encrypted by default while in transit or stored in the mail system.

Quote:

Transport Layer Security/Secure Sockets Layer (TLS/SSL), Internet Protocol Security (IPSec), and Advanced Encryption Standard (AES).

All used by default.

2) SMIME type encryption based on public and private keys is an additional form of encryption which encrypts the actual message text separately. You can generate your own keys (I believe)

3) Microsoft office 365 encryption - comes inbuilt if you have an office 365 E3 subscription.

Note these things are really only meant for real sensitive email and are much more likely to lose your data than to protect it.

Key Generation: If included in your windows version.
Open a command window as administrator and type

ssh-keygen

Tell it where to put the key pair.

yes here:
https://www.ssh.com/academy/ssh/keygen

thanks but I just wanted to know for the hell of it -
I couldn't be bothered encrypting anything.
Govts. have backdoors on everything and so it seems do hackers.
That is my point.

Back to top

IP Logged

Dnarever

Gold Member

Offline

Australian Politics

Posts: 57150
Here
Gender: male

Re: Optus customers hacked.
Reply #226 - Nov 1^st, 2022 at 1:19pm

Bobby. wrote on Nov 1^st, 2022 at 1:14pm:

Dnarever wrote on Nov 1^st, 2022 at 12:58pm:

Bobby. wrote on Nov 1^st, 2022 at 12:37pm:

Dnarever wrote on Nov 1^st, 2022 at 8:25am:

Quote:

There are aspects of this debate that we wish we were able to discuss more freely

A lot of us likely have such restrictions - There are points here that I have not made for the same reason.

Ummm?

So - I checked my Outlook today and yes it does have an encryption capability but asked
for me to get a certificate online which I don't think is free.
They didn't say.
They also didn't say if the Govt. has a backdoor on it
however I'm certain they do.

If it's true encryption then why should I advertise a public encryption key
which they may have control over - that they may also have access to?
Surely my computer should be able to make its own encryption key and only
provide it to those who need it?
It sounds very fishy to me.

There are several types of encription in play.

1) all transported mail is encrypted by default while in transit or stored in the mail system.

Quote:

Transport Layer Security/Secure Sockets Layer (TLS/SSL), Internet Protocol Security (IPSec), and Advanced Encryption Standard (AES).

All used by default.

2) SMIME type encryption based on public and private keys is an additional form of encryption which encrypts the actual message text separately. You can generate your own keys (I believe)

3) Microsoft office 365 encryption - comes inbuilt if you have an office 365 E3 subscription.

Note these things are really only meant for real sensitive email and are much more likely to lose your data than to protect it.

Key Generation: If included in your windows version.
Open a command window as administrator and type

ssh-keygen

Tell it where to put the key pair.

yes here:
https://www.ssh.com/academy/ssh/keygen

thanks but I just wanted to know for the hell of it -
I couldn't be bothered encrypting anything.
Govts. have backdoors on everything and so it seems do hackers.
That is my point.

I am weak with encryption - hate it.

Hackers are mostly looking for easy targets unless the target is very attractive. Same with passwords - If they work out that you are using a complex 19 character password they wont even bother to try.

Back to top

IP Logged

Bobby. Gold Member Offline Australian Politics Posts: 95298 Melbourne Gender:	Re: Optus customers hacked. Reply #227 - Nov 1^st, 2022 at 1:24pm Yes DNA, https://en.wikipedia.org/wiki/List_of_the_most_common_passwords Rank 2021 1 123456 2 123456789 3 12345 4 qwerty 5 password 6 12345678 7 111111 8 123123 9 1234567890 10 1234567 11 qwerty123 12 000000 13 1q2w3e 14 aa12345678 15 abc123 16 password1 17 1234 18 qwertyuiop 19 123321 20 password123
Back to top	IP Logged

Dnarever

Gold Member

Offline

Australian Politics

Posts: 57150
Here
Gender: male

Re: Optus customers hacked.
Reply #228 - Nov 1^st, 2022 at 1:29pm

Bobby. wrote on Nov 1^st, 2022 at 1:24pm:

Yes DNA,
https://en.wikipedia.org/wiki/List_of_the_most_common_passwords

Rank 2021

1 123456
2 123456789
3 12345
4 qwerty
5 password
6 12345678
7 111111
8 123123
9 1234567890
10 1234567
11 qwerty123
12 000000
13 1q2w3e
14 aa12345678
15 abc123
16 password1
17 1234
18 qwertyuiop
19 123321
20 password123

I have seen or used most of those passwords often on critical commercial servers.

Back to top

IP Logged

Bobby.

Gold Member

Offline

Australian Politics

Posts: 95298
Melbourne
Gender: male

Re: Optus customers hacked.
Reply #229 - Nov 1^st, 2022 at 1:38pm

Dnarever wrote on Nov 1^st, 2022 at 1:29pm:

Bobby. wrote on Nov 1^st, 2022 at 1:24pm:

Yes DNA,
https://en.wikipedia.org/wiki/List_of_the_most_common_passwords

Rank 2021

1 123456
2 123456789
3 12345
4 qwerty
5 password
6 12345678
7 111111
8 123123
9 1234567890
10 1234567
11 qwerty123
12 000000
13 1q2w3e
14 aa12345678
15 abc123
16 password1
17 1234
18 qwertyuiop
19 123321
20 password123

I have seen or used most of those passwords often on critical commercial servers.

me too - it's a worry.

Back to top

IP Logged

Bobby.

Gold Member

Offline

Australian Politics

Posts: 95298
Melbourne
Gender: male

Re: Optus customers hacked.
Reply #230 - Nov 3^rd, 2022 at 8:40pm

I got an email from Vic Roads today.
Part of it says:

Quote:

We will replace the licences of over 900,000 Victorians who were impacted by the Optus data breach, and you will receive your new licence card by early 2023.
As an interim step so we can protect your identity sooner, you will soon receive in the mail a free label which prominently displays your new unique licence card number. This label can be placed on your licence/permit for easy reference and will allow you to use this new licence card number for identity verification ahead of receiving your new licence card.
Please note you will only receive a card label or replacement licence if your licence is current.

That's good – at least I don't have to do anything.

Back to top

IP Logged

Jasin Gold Member Offline Posts: 46494 Gender:	Re: Optus customers hacked. Reply #231 - Nov 4^th, 2022 at 8:13am I made Optus pay my bill themselves out of punishment. I threatened to leave Optus, but would be satisfied to stay and forgive them, if they paid my next bill for me. They happily obliged and valued me as a 'loyal' customer.
Back to top	AIMLESS EXTENTION OF KNOWLEDGE HOWEVER, WHICH IS WHAT I THINK YOU REALLY MEAN BY THE TERM 'CURIOSITY', IS MERELY INEFFICIENCY. I AM DESIGNED TO AVOID INEFFICIENCY. IP Logged

Bobby. Gold Member Offline Australian Politics Posts: 95298 Melbourne Gender:	Re: Optus customers hacked. Reply #232 - Nov 4^th, 2022 at 8:20am Jasin wrote on Nov 4^th, 2022 at 8:13am: I made Optus pay my bill themselves out of punishment. I threatened to leave Optus, but would be satisfied to stay and forgive them, if they paid my next bill for me. They happily obliged and valued me as a 'loyal' customer. Bullshit -
Back to top	IP Logged

Sophia

Gold Member

Offline

Posts: 7847

Re: Optus customers hacked.
Reply #233 - Nov 4^th, 2022 at 8:48am

Bobby. wrote on Nov 4^th, 2022 at 8:20am:

Jasin wrote on Nov 4^th, 2022 at 8:13am:

I made Optus pay my bill themselves out of punishment.
I threatened to leave Optus, but would be satisfied to stay and forgive them, if they paid my next bill for me.
They happily obliged and valued me as a 'loyal' customer. Cool

Bullshit - Grin

Hmmmm… well you know what Bobby…. I wouldn’t put it past Jasin to achieve something like that, after all, we never know unless we give it a go. Grin

Back to top

IP Logged

Bobby.

Gold Member

Offline

Australian Politics

Posts: 95298
Melbourne
Gender: male

Re: Optus customers hacked.
Reply #234 - Nov 4^th, 2022 at 8:55am

Sophia wrote on Nov 4^th, 2022 at 8:48am:

Bobby. wrote on Nov 4^th, 2022 at 8:20am:

Jasin wrote on Nov 4^th, 2022 at 8:13am:

I made Optus pay my bill themselves out of punishment.
I threatened to leave Optus, but would be satisfied to stay and forgive them, if they paid my next bill for me.
They happily obliged and valued me as a 'loyal' customer. Cool

Bullshit - Grin

Hmmmm… well you know what Bobby…. I wouldn’t put it past Jasin to achieve something like that, after all, we never know unless we give it a go. Grin

No - it's sarcasm. Grin

Back to top

IP Logged

Bobby.

Gold Member

Offline

Australian Politics

Posts: 95298
Melbourne
Gender: male

Re: Optus customers hacked.
Reply #235 - Nov 4^th, 2022 at 5:03pm

Some more thoughts.

Maybe Optus was required to have a file with all 10 million names and details in it
due to some secret deal with the Govt?
Maybe the Govt. wanted live real time access to the whole lot?
If so it was a hackers delight with a great honeypot waiting for whoever cracked it.
Do you think we'll ever be told the truth?
I'm very cynical about such things – especially private companies roped
in by legislation to do the job of the security services – which they are.
I bet all that info is even available live at the Indian call centers which handle our phone requests.
It was a disaster waiting to happen and Optus probably thinks it can blame it on the Govt.
so why should they care about what is not under their control?

Back to top

IP Logged

greggerypeccary

Gold Member

Offline

Australian Politics

Posts: 131492
Gender: male

Re: Optus customers hacked.
Reply #236 - Nov 4^th, 2022 at 5:09pm

Bobby. wrote on Nov 4^th, 2022 at 8:20am:

Jasin wrote on Nov 4^th, 2022 at 8:13am:

I made Optus pay my bill themselves out of punishment.
I threatened to leave Optus, but would be satisfied to stay and forgive them, if they paid my next bill for me.
They happily obliged and valued me as a 'loyal' customer. Cool

Bullshit - Grin

Complete & utter.

Back to top

IP Logged

Jasin

Gold Member

Offline

Posts: 46494
Gender: male

Re: Optus customers hacked.
Reply #237 - Nov 4^th, 2022 at 6:39pm

greggerypeccary wrote on Nov 4^th, 2022 at 5:09pm:

Bobby. wrote on Nov 4^th, 2022 at 8:20am:

Jasin wrote on Nov 4^th, 2022 at 8:13am:

I made Optus pay my bill themselves out of punishment.
I threatened to leave Optus, but would be satisfied to stay and forgive them, if they paid my next bill for me.
They happily obliged and valued me as a 'loyal' customer. Cool

Bullshit - Grin

Complete & utter.

Didn't pay this bill and yet it came up $0.00 due on my Optus site-account. Yippey!!!

Dear Pecker

SUCK ME BEAUTIFUL !!!!

Back to top

AIMLESS EXTENTION OF KNOWLEDGE HOWEVER, WHICH IS WHAT I THINK YOU REALLY MEAN BY THE TERM 'CURIOSITY', IS MERELY INEFFICIENCY. I AM DESIGNED TO AVOID INEFFICIENCY.

IP Logged

Bobby.

Gold Member

Offline

Australian Politics

Posts: 95298
Melbourne
Gender: male

Re: Optus customers hacked.
Reply #238 - Apr 21^st, 2023 at 10:39am

Maybe I should have joined up to this -
I could have got some free money?

https://www.abc.net.au/news/2023-04-21/optus-hack-class-action-customer-privacy-...

Optus data breach class action launched for
millions of Australians caught up in cyber attack

By Ben Knight and staff
Posted 4h ago

Just over six months since Optus reported a major hack, a class action is being lodged on behalf of customers who say their safety has been compromised.
Key points:

Slater and Gordon says it is pursuing a "substantial" compensation sum on behalf of up to 10 million Australians
The lawsuit claims Optus breached consumer laws and failed in its duty of care
Optus has previously apologised for the hack, which it denied was due to human error

Law firm Slater and Gordon is lodging the class action in the Federal Court on behalf of more than 100,000 registered participants.

The lawsuit claims Optus breached consumer and telecommunications law and failed in its duty of care to protect users from harm.

"We have people who work in frontline occupations — police officers — very, very concerned that criminals will find out where they live," the firm's Ben Hardwick said.

"So the the release of this information causes people great anxiety. It causes them great concern.

Back to top

IP Logged

UnSubRocky

Gold Member

Offline

Australian Legend

Posts: 21731
Rockhampton, Q
Gender: male

Re: Optus customers hacked.
Reply #239 - Apr 21^st, 2023 at 5:24pm

Bobby. wrote on Nov 4^th, 2022 at 8:20am:

Jasin wrote on Nov 4^th, 2022 at 8:13am:

I made Optus pay my bill themselves out of punishment.
I threatened to leave Optus, but would be satisfied to stay and forgive them, if they paid my next bill for me.
They happily obliged and valued me as a 'loyal' customer. Cool

Bullshit - Grin

I think I get a $20 discount on my next bill when I have an outage of internet service for an hour or more.

Back to top

IP Logged