all sample of around 10,200 records was even posted online as proof before the hacker later claimed to have deleted everything.
Optus moved quickly to contain the incident, notify affected customers, and offer credit monitoring and document replacement services. The Australian government, regulators, and privacy advocates all jumped in, and the breach remains one of the most talked-about cyber incidents in Australian history.
Who Is Amaysim and Why the Connection to Optus?
Amaysim launched in 2010 as one of Australia’s first mobile virtual network operators (MVNOs). It built its entire business on the Optus wholesale network, offering no-contract, budget-friendly mobile plans. In February 2022, Optus acquired Amaysim for around $250 million, bringing roughly 1.2 million subscribers under the Optus umbrella.
Because Amaysim customers use Optus towers and infrastructure, it was logical to assume their data might have been stored in the same systems. That’s exactly why the “Amaysim Optus data breach” question exploded on forums, Reddit, and social media in the days after the announcement.
The Official Answer: Amaysim Customers Were Not Affected
Optus was crystal clear from day one. In multiple public statements and on its dedicated cyber response page, the company confirmed:
“amaysim, Coles Mobile and Catch Mobile customers have not been impacted.”
Senior executives and the Optus support team repeated the message in media interviews and FAQs: Amaysim’s customer data sits on separate systems and was never part of the compromised database. The breach only affected direct Optus post-paid and pre-paid mobile customers, personal broadband accounts, and certain Optus Business (SMB) services.
Amaysim itself also issued a statement reassuring its users. No Amaysim customer data—names, DOBs, addresses, or ID documents—was accessed. Even customers who switched from Optus to Amaysim or vice versa were protected because the records were handled separately.
This distinction mattered. While some other MVNOs (such as certain former Virgin Mobile or gomo users) received concerning letters from Optus, Amaysim customers did not.
Also read: Are 1800 numbers free from Amaysim mobiles?
Why the Confusion Anyway?
A few factors created the mix-up:
- Ownership overlap – People saw “Optus owns Amaysim” and assumed one big shared database.
- Network sharing – Amaysim runs on Optus towers, but customer records and billing systems are separate.
- Letters sent to non-Optus customers – Some people who had never been direct Optus customers received breach notification letters because they had used other resellers. This understandably rattled Amaysim users until the company clarified the situation.
Optus also had to deal with wholesale, enterprise, and satellite customers separately, adding to the noise.
What Should Amaysim Customers Do Right Now?
If you’re with Amaysim, you can breathe easy. Your data wasn’t part of the breach. Still, good digital hygiene never goes out of style:
- Enable two-factor authentication everywhere (especially banking and email).
- Monitor your accounts for unusual activity.
- Consider a credit monitoring service if you’re extra cautious.
- Be wary of phishing texts or calls pretending to be from Amaysim or Optus.
Amaysim continues to operate normally, and its network performance was never disrupted by the incident.
Broader Lessons from the Optus Breach
The 2022 Optus data breach exposed how much personal information telcos hold and how vulnerable even large organisations can be. It sparked calls for tougher privacy laws, mandatory breach reporting timelines, and better third-party risk management across the industry. For customers, it was a wake-up call that “it won’t happen to me” is no longer a safe mindset.
Amaysim’s clean bill of health in this case shows that not every MVNO is automatically swept up when the parent network is hit. But it also highlights why smart consumers ask questions and read official statements carefully instead of panicking at the first headline.
Final Thoughts
So, to repeat the headline question: Are Amaysim customers affected by the Optus data breach? No. Official statements from both Optus and Amaysim, repeated across multiple channels and still visible on Optus’s cyber response page years later, confirm your information stayed safe.
That doesn’t mean you should ignore data security—cyber threats evolve every day—but at least in this major incident, Amaysim users were spared the stress that hit millions of other Australians.
If you’re still worried or received any unexpected communication, reach out directly to Amaysim support or check the official Optus cyber response page for the latest updates. Staying informed is the best defence.
