Singapore Telecommunications (Singtel) said it would be assessing the potential costs of the cyber security breach at its Optus arm, Australia’s second-largest telecoms, 12 days ago.
Singtel, in its second comment on the breach of private data from 10 million accounts, sought to clarify reports it could face a huge compensation bill.

It said it has not received any legal notice of a class action lawsuit but has engaged lawyers to advise it.

“Any class action will be vigorously defended, if commenced,” Singtel said in a news statement.

The Australian government on the weekend blamed Optus for the breach, which affected the equivalent of 40 percent of Australia’s population, saying customers were exposed to financial crime and pressing the company to do more to notify those affected.

Australia said Optus should fund the cost of damage to its customers. Optus did not reveal the name of its cyber security vendors.

Last week, an unidentified person posted online that they had released personal details of 10,000 Optus customers. The government urged customers who have been notified of that breach to cancel passports and other identification documents that may have been exposed.

Singtel said it is continuing to evaluate the potential financial implications arising from this matter and any material development will be disclosed to the market on a timely basis.

At least two major law firms, Slater & Gordon and Maurice Blackburn, have said they are investigating a possible class action against Optus to claim compensation for people affected by the breach.