Hackers have allegedly released 10,000 Optus customer records and will release more, unless a $1.5 million ransom is paid within the week, ACM understands.
The cyber attackers have threatened to release a 10,000 new records each day until their demands are met.
The threats come after the telco giant fell victim to a cyber attack on Thursday, with the private details of almost 10 million customers stolen.
The massive data breach saw information including dates of birth, passport and driver licence numbers and addresses taken from Optus.
Cybersecurity expert Nigel Phair told Sunrise on Tuesday the hardest part for customers will be understanding if you've become a victim.
"Unless you are looking through the dark web and trying to find where this is, you won't know at all," he said.
"It'll be interesting to see what data they actually release. Some of it is more sensitive than others, dates of birth and addresses, things like Medicare numbers and passport numbers by themselves are less sensitive if it comes to identity."
Unless you are looking through the dark web and trying to find where this is, you won't know at all.- Cybersecurity expert Nigel Phair
It comes as Australian law firm Slater and Gordon explores the possibility of a class action against the telco.
The incident is under investigation by the Australian Federal Police however, on Tuesday the AFP declined to confirm to ACM if data was being released by hackers.
The AFP has launched Operation Hurricane to gather evidence and work with overseas law enforcement to identify the offenders behind this attack, it said in a statement.
The AFP will not divulge what information it has obtained in the first few days of Operation Hurricane, the statement said.
AFP Assistant Commissioner Cyber Command Justine Gough said the investigation will be extremely complex and very lengthy, but that the AFP specialised in investigations of this type.
"The AFP is monitoring the dark web using a range of specialist capabilities. Criminals, who use pseudonyms and anonymising technology, can't see us but I can tell you that we can see them," she said.
"A key focus, which we have had success in the past, is to identify those criminals."
Optus has now sent email or SMS messages to all customers whose ID document numbers, such as licence or passport number, were compromised because of the cyberattack, Optus said on Monday.
"We continue to reach out to customers who have had other details, such as their email address, illegally accessed," the company said in a statement.
The most-affected current and former customers will be offered a free 12-month subscription to Equifax Protect.
No communications from Optus relating to this incident will include any links as we recognise there are criminals who will be using this incident to conduct phishing scams.- Optus
"Equifax Protect is a credit monitoring and identity protection service that can help reduce the risk of identity theft," Optus said in a statement.
These customers will be contacted by Optus in coming days.
"No communications from Optus relating to this incident will include any links as we recognise there are criminals who will be using this incident to conduct phishing scams," the telco said.
Optus said no passwords or financial details have been compromised.
Customers' names, dates of birth, phone numbers, email addresses, driver's licence numbers, passport numbers or addresses could have been accessed in the attack, Optus confirmed.
Scamwatch issued an immediate alert to Optus customers.
If you are or were an Optus customer who may have been affected and wish to register your interest in Slater and Gordon's investigation, or for further information, visit www.slatergordon.com.au/optus.
Sign up for our newsletter to stay up to date.