Vocus Group, the parent company of Dodo and iPrimus, has confirmed a cyberattack that exposed sensitive customer data and led to unauthorised SIM-swap incidents. The breach affected 1,600 customers, underscoring rising cybersecurity threats in Australia’s telecom sector.
The US Department of Homeland Security has confirmed a major cybersecurity breach affecting FEMA and CBP employees. The attacker exploited a Citrix vulnerability to infiltrate internal systems, prompting mass staff firings and renewed scrutiny over federal cybersecurity practices.
AI’s new currency is compute. OpenAI and AMD’s 6GW pact jolts markets, fusing chips, capital and energy into a global buildout. From Wall Street to the Global South, data centres become power plants for the information age, an equity compute loop spinning at breakneck speed.
Vocus Group, the parent company of Dodo and iPrimus, has confirmed a cyberattack that exposed sensitive customer data and led to unauthorised SIM-swap incidents. The breach affected 1,600 customers, underscoring rising cybersecurity threats in Australia’s telecom sector.
Cyber News Centre's cyber update for 21st October 2025: Vocus Group, the parent company of Dodo and iPrimus, has confirmed a cyberattack that exposed sensitive customer information and led to unauthorised SIM-swap incidents affecting a number of mobile accounts.
Vocus Group is the nation’s fourth-largest telecommunications provider, servicing more than 804,000 NBN customers and holding around 9.2% of Australia’s broadband market through its Dodo and iPrimus brands.
The Update: The company detected suspicious activity on its email systems late last week, prompting an internal investigation that revealed unauthorised access to customer accounts. Of the 1,600 affected users, 34 experienced SIM swaps, allowing attackers to assume control of their phone numbers. This could enable interception of calls, messages, and two-factor authentication codes.
Vocus temporarily disabled access to its email services to contain the incident, reset customer credentials, and reversed the fraudulent SIM swaps. The company has since restored services and stated it has no evidence that financial information was accessed. Impacted customers are being offered free support through IDCare to help monitor for potential identity misuse.
A spokesperson for Vocus said the breach was contained quickly after detection and that additional security controls have been implemented to prevent recurrence.
“Our initial investigation has revealed unauthorised access to approximately 1600 Dodo email accounts, leading to unauthorised SIM swaps on 34 Dodo Mobile accounts,” the spokesperson for Vocus said.
Why It Matters: This breach underscores the growing threat of SIM-swap attacks, which are increasingly being used to bypass SMS-based two-factor authentication. Even small-scale breaches can have significant consequences when they involve control of communication channels.
The incident adds to a string of cyberattacks targeting Australian telecommunications providers in recent years, following major breaches at Optus and Telstra. It highlights the critical need for telcos to harden internal systems, adopt stronger identity-verification procedures, and shift customers toward more secure authentication methods.
For individuals, the attack serves as a reminder to monitor accounts for suspicious activity, enable app-based authentication wherever possible, and promptly report any loss of mobile connectivity.
Get the stories that matter to you.
Subscribe to Cyber News Centre and update your preferences to follow our Daily 4min Cyber Update, Innovative AI Startups, The AI Diplomat series, or the main Cyber News Centre newsletter — featuring in-depth analysis on major cyber incidents, tech breakthroughs, global policy, and AI developments.
The US Department of Homeland Security has confirmed a major cybersecurity breach affecting FEMA and CBP employees. The attacker exploited a Citrix vulnerability to infiltrate internal systems, prompting mass staff firings and renewed scrutiny over federal cybersecurity practices.
SimonMed Imaging has confirmed a ransomware attack by the Medusa group, exposing the sensitive health and personal data of 1.27 million patients. The breach, which originated in January, highlights the severe risks posed by third-party vendor vulnerabilities in the healthcare sector.
The Australian Signals Directorate's latest Annual Cyber Threat Report reveals a cybercrime is reported every 6 minutes, with costs to businesses soaring. The report highlights the growing threat from state-sponsored actors and the impact of AI in enabling larger, faster attacks on the nation.
Harvard University has confirmed it was affected by a global cyber campaign exploiting a flaw in Oracle’s E-Business Suite. The attack, linked to the Cl0p ransomware group, targeted over 100 organisations worldwide, prompting urgent patching and investigation.
Where cybersecurity meets innovation, the CNC team delivers AI and tech breakthroughs for our digital future. We analyze incidents, data, and insights to keep you informed, secure, and ahead. Sign up for free!
