Vocus Group, which operates well-known brands Dodo and iPrimus, has disclosed a recent cybersecurity incident affecting its Australian customer base.
The company identified suspicious activity within its systems, leading to the discovery of unauthorised access to customer email addresses and targeted attacks on mobile services.
The breach, detected late last week, resulted in unauthorised SIM swaps for 34 Dodo Mobile customers and compromised roughly 1,600 email accounts.
In response, Vocus suspended certain services, worked to reverse the SIM swaps, and restored email access by Sunday morning.
The company has urged all affected users to update their passwords and is providing ongoing updates through digital channels.
“We have worked with impacted customers to reverse these SIM swaps, and we continue to monitor this situation,” a Vocus spokesperson said, as reported by Daily Mail.
The company is also offering support via its IDCare system and has apologised for the disruption caused by the incident.
Vocus is the fourth-largest provider of the National Broadband Network in Australia, accounting for about 9.2% of the market. Its subsidiaries, Dodo and iPrimus, serve an estimated 804,000 customers nationwide.
Meanwhile, cyberdaily.au’s exclusive report revealed that Aussie Fluid Power (AFP) – a hydraulics and processing supplier – is investigating a security issue following claims by the Anubis ransomware group that it accessed and leaked company data.
AFP confirmed that a third party gained unauthorised access to a limited number of its IT systems and that some employee, customer, and supplier data may have been compromised.
The company has engaged forensic IT specialists and notified the Australian Cyber Security Centre.
“We are investigating the matter as a priority and have engaged forensic IT experts to support the investigation,” an AFP spokesperson told cyberdaily.au.
The company is contacting potentially affected individuals and has advised vigilance, although no immediate action is required from customers or suppliers at this stage.
Recent data from WatchGuard Technologies indicates that Australian organisations continue to face persistent cyber threats.
Most malware detected was of known types, but a notable proportion were zero-day threats, which are newly discovered and often more difficult to defend against.
Australia’s share of malware detections in the Asia-Pacific region was just over 1%, but the country accounted for 57% of blocked network attacks, highlighting the scale of network-based threats.
Financial losses from scams remain a concern for insurers and their clients. The National Anti-Scam Centre reported that Australians lost nearly $175 million to scams in the first half of 2025 (H1 2025), despite a decline in the number of reported incidents.
Losses were particularly high among individuals for whom English is a second language and First Nations Australians.
Phishing scams accounted for $19.5 million in losses, with cryptocurrency impersonation schemes being a significant contributor.
