Although a couple of days late, and far less 'cleansed' than they had promised, Anonymous' protest against the Federal Government's data retention proposal has certainly gained a lot of attention.
Anonymous' premise is that (and I paraphrase here; I'm sure they'll put me right if I misrepresent them!) the likelihood of ISP-stored user data leaking is very high. To prove that, they broke into a friendly neighbourhood ISP and grabbed a substantial data file.
In something of a mea culpa, AAPT's CEO David Yuile is reported (via Pastebin of course!) to make attempts to defend the company from the hack, blaming pretty-much everyone except AAPT.
July 26 2012
STATEMENT FROM DAVID YUILE, CEO AAPT
IT WAS BROUGHT TO OUR ATTENTION BY OUR SERVICE PROVIDER, MELBOURNE IT, AT APPROXIMATELY 9.30PM LAST NIGHT THAT THERE HAD BEEN A SECURITY INCIDENT AND UNAUTHORISED ACCESS TO SOME AAPT BUSINESS CUSTOMER DATA STORED ON SERVERS AT MELBOURNE IT.
AAPT IMMEDIATELY INSTRUCTED MELBOURNE IT TO SHUT DOWN THE SERVERS WHEN WE WERE NOTIFIED OF THE INCIDENT.
PRELIMINARY FINDINGS SUGGEST IT WAS TWO FILES THAT WERE COMPROMISED AND THE DATA IS HISTORIC, WITH LIMITED PERSONAL CUSTOMER INFORMATION. FURTHER, THE SERVERS ON WHICH THE FILES WERE STORED HAVE NOT BEEN USED OR CONNECTED TO AAPT FOR AT LEAST 12 MONTHS.
WE ARE UNDERTAKING A THOROUGH INVESTIGATION INTO THE INCIDENT WITH MELBOURNE IT AND THE RELEVANT AUTHORITIES TO ESTABLISH EXACTLY THE TYPE AND EXTENT OF DATA THAT HAS BEEN COMPROMISED, HOW THE SECURITY INCIDENT HAPPENED AND WHAT FURTHER MEASURES ARE REQUIRED TO PREVENT ANY FUTURE INCIDENTS.
AAPT IS EXTREMELY CONCERNED ABOUT THIS INCIDENT AND IS TREATING THIS MATTER WITH THE UTMOST SERIOUSNESS.
AAPT WILL BE CONTACTING ANY IMPACTED CUSTOMERS AS SOON AS POSSIBLE.
There are a number of questions that arise out of this, most of which are very worrying.