An investigative journalist is "absolutely outraged" after her phone records were accessed by a Vodafone employee.
The company admitted on Saturday a lone employee had accessed "call charge records and text messages" in January 2011.
Fairfax Media journalist Natalie O'Brien had exposed a serious security risk in 2011 in the company's data storage techniques, which reportedly meant the names, addresses and credit card details of millions of customers were available online using generic passwords.
Internal Vodafone documents obtained by News Limited reveal the Vodafone Group's former Australian fraud boss, Colin Yates, sent an email in 2012 outlining his concern that the accessing of O'Brien's phone records may become public knowledge.
"This could have serious consequences given it is a breach of the Australian Telecommunications Act," Yates wrote.
"And [it] would certainly destroy all of the work done by VHA [Vodafone Hutchison Australia] over the past months to try and restore their reputation."
Vodafone immediately commissioned an investigation by a top accounting firm into the hacking, the company said in a statement.
"The investigation found there was no evidence VHA management had instructed the employee to access the messages and that VHA staff were fully aware of their legal obligations in relation to customer information," a spokeswoman said.
The inquiry was undertaken to establish if any employee had broken privacy laws rather than to uncover the source of the Fairfax story, she said.
"As a result of our investigation, several retail staff were dismissed for breaches of VHA security policies."
The company "strongly denied any allegations of improper behaviour".
O'Brien, who was not aware of the incident before the publishing of internal documents by News Limited, said she was "absolutely outraged."
Source: CIO Australia
Sign up for Computerworld eNewsletters.