And no one was surprised
"The attack on Optus will be probed by two regulators, the Australian Communications and Media Authority and the Office of the Australian Information Commissioner."
Well then ACMA, how about dropping your stupid requirement for providers to need to see that much ID in the first place? Or you too worried about upsetting ASIO?
There's no reason I shouldn't be able to go into Coles, come out with a SIM, pop it in and have it activated with no ID check. And don't try the "security" or "terrorism" rubbish.
While we're at it, can we see CIOs/CTOs actually earning their huge salaries and being properly responsible for this stuff please. Like prison-time responsible. Would see some change then I reckon.
As for Medibank, yeah, watch for updates on that. They've chosen their words very carefully.