Berliner Boersenzeitung - Repeat hacks highlight Australia's cyber flaws

EUR -
AED 4.272332
AFN 80.42513
ALL 97.618365
AMD 447.08411
ANG 2.081722
AOA 1066.625747
ARS 1482.668999
AUD 1.786354
AWG 2.093704
AZN 1.978062
BAM 1.956168
BBD 2.350642
BDT 141.33659
BGN 1.957659
BHD 0.438683
BIF 3469.652746
BMD 1.163169
BND 1.494381
BOB 8.044513
BRL 6.49316
BSD 1.164219
BTN 100.225856
BWP 15.630941
BYN 3.810017
BYR 22798.109012
BZD 2.33854
CAD 1.596339
CDF 3356.905613
CHF 0.931855
CLF 0.029216
CLP 1121.166966
CNY 8.349168
CNH 8.350808
COP 4677.985862
CRC 587.510528
CUC 1.163169
CUP 30.823974
CVE 110.285748
CZK 24.639171
DJF 207.108963
DKK 7.464619
DOP 70.313228
DZD 151.632527
EGP 57.473915
ERN 17.447532
ETB 161.762232
FJD 2.62283
FKP 0.867122
GBP 0.86695
GEL 3.152504
GGP 0.867122
GHS 12.137283
GIP 0.867122
GMD 83.169137
GNF 10101.900472
GTQ 8.938682
GYD 243.575824
HKD 9.128374
HNL 30.469732
HRK 7.534655
HTG 152.858757
HUF 399.327066
IDR 18992.220609
ILS 3.905799
IMP 0.867122
INR 100.205657
IQD 1525.086915
IRR 48983.951758
ISK 142.394978
JEP 0.867122
JMD 186.175025
JOD 0.824691
JPY 172.533407
KES 150.420989
KGS 101.719181
KHR 4665.877792
KMF 492.368475
KPW 1046.851956
KRW 1617.560714
KWD 0.355511
KYD 0.970183
KZT 620.63676
LAK 25106.723332
LBP 104314.024614
LKR 351.24608
LRD 233.423914
LSL 20.612978
LTL 3.434535
LVL 0.703589
LYD 6.332191
MAD 10.527381
MDL 19.803726
MGA 5180.974698
MKD 61.571583
MMK 2442.318183
MNT 4170.955634
MOP 9.412171
MRU 46.311713
MUR 53.145273
MVR 17.947427
MWK 2018.779793
MXN 21.773532
MYR 4.934746
MZN 74.396717
NAD 20.612978
NGN 1779.101521
NIO 42.848061
NOK 11.836209
NPR 160.361169
NZD 1.954985
OMR 0.447344
PAB 1.164219
PEN 4.14408
PGK 4.820907
PHP 66.320372
PKR 331.569578
PLN 4.248337
PYG 9010.695183
QAR 4.232996
RON 5.070955
RSD 117.172044
RUB 91.430301
RWF 1682.316494
SAR 4.365055
SBD 9.65296
SCR 17.095616
SDG 698.482539
SEK 11.232448
SGD 1.494154
SHP 0.914068
SLE 26.639281
SLL 24391.073311
SOS 665.325168
SRD 43.279196
STD 24075.246293
STN 24.50461
SVC 10.186916
SYP 15123.352623
SZL 20.608877
THB 37.674798
TJS 11.205608
TMT 4.082723
TND 3.422544
TOP 2.724256
TRY 47.001673
TTD 7.903487
TWD 34.189007
TZS 3032.770825
UAH 48.620447
UGX 4171.784839
USD 1.163169
UYU 46.918827
UZS 14736.772431
VES 136.050029
VND 30428.496518
VUV 139.335512
WST 3.078793
XAF 656.080429
XAG 0.030437
XAU 0.000347
XCD 3.143522
XCG 2.098195
XDR 0.815954
XOF 656.080429
XPF 119.331742
YER 280.381842
ZAR 20.60507
ZMK 10469.912151
ZMW 26.806043
ZWL 374.539888
  • CMSC

    0.0900

    22.314

    +0.4%

  • CMSD

    0.0250

    22.285

    +0.11%

  • RBGPF

    0.0000

    69.04

    0%

  • SCS

    0.0400

    10.74

    +0.37%

  • RELX

    0.0300

    53

    +0.06%

  • RIO

    -0.1400

    59.33

    -0.24%

  • GSK

    0.1300

    41.45

    +0.31%

  • NGG

    0.2700

    71.48

    +0.38%

  • BP

    0.1750

    30.4

    +0.58%

  • BTI

    0.7150

    48.215

    +1.48%

  • BCC

    0.7900

    91.02

    +0.87%

  • JRI

    0.0200

    13.13

    +0.15%

  • VOD

    0.0100

    9.85

    +0.1%

  • BCE

    -0.0600

    22.445

    -0.27%

  • RYCEF

    0.1000

    12

    +0.83%

  • AZN

    -0.1200

    73.71

    -0.16%

Advertisement Image
Repeat hacks highlight Australia's cyber flaws
Repeat hacks highlight Australia's cyber flaws / Photo: Muhammad FAROOQ - AFP

Repeat hacks highlight Australia's cyber flaws

Inadequate privacy safeguards and the stockpiling of sensitive customer information have made Australia a lucrative target in the eyes of foreign hackers, cybersecurity experts told AFP following a series of major data breaches.

Advertisement Image

Text size:

Medibank, Australia's largest private health insurer, recently confirmed that hackers had accessed the data of 9.7 million current and former customers, including medical records related to drug abuse and pregnancy terminations.

Telecom company Optus fell prey to a data breach of similar scale in late September, during which the personal details of up to 9.8 million people were accessed.

Both incidents sit comfortably among the largest data breaches in Australian history.

Australian National University cybersecurity expert Thomas Haines said many companies had been hoarding personal data that they should not have been hanging on to.

"There was a famous line for a while: Data is the new oil," he told AFP.

"If data is the new oil, then we're living the era of the weekly oil spill."

Haines contrasted Australia's approach with that of the European Union, which in 2018 adopted sweeping privacy reforms limiting how organisations collect, use and store personal data.

"There have got to be incentives in place to stop companies hoarding data they don't need, or to penalise those companies for big leaks. Europe has done this," he said.

"At the moment the business incentives are basically along the lines of: Let's just keep a whole bunch of data."

Haines said Medibank appeared to be an exception, in that most of the sensitive information within its databases had been stored for good reason.

- Hacking 'for profit' -

Australia's comparatively weak safeguards against identity theft meant it was also easier to exploit stolen personal information, Haines said.

"All they need to know is your passport, your driver's licence and some other things -- and then I can start taking out loans in your name."

Haines said European countries such as Norway had much more stringent requirements involving face-to-face contact.

Dennis Desmond, a former FBI agent and US Defense Intelligence Agency officer, said most hackers were searching for particular types of data.

"For-profit hackers are going after healthcare data, they're going after identity data and credentials to access systems," he told AFP.

"There is a profit motivation there, otherwise they wouldn't be risking jail and prosecution."

The Medibank hackers this week started leaking stolen data to a dark web forum, after the company refused to pay a US$9.7 million (Aus$15 million) ransom.

The Optus breach led to the theft of customers' names, birth dates, and passport numbers.

- Russia blamed -

Australian Federal Police Commissioner Reece Kershaw on Friday blamed the Medibank cyberattack on a team of hackers based in Russia.

"We believe those responsible for the breach are in Russia," he told reporters.

"Our intelligence points to a group of loosely affiliated cyber criminals who are likely responsible for past significant breaches in countries across the world."

Medibank data leaked to the dark web so far has included hundreds of potentially-compromising medical records related to drug addiction, alcohol abuse and sexually-transmitted infections.

Home Affairs Minister Clare O'Neil conceded on Friday the country's cyber defences had not always been up to scratch.

University of Sydney data researcher Jane Andrew said one major flaw was that Australian companies were not always obliged to report data breaches.

"There are heaps of data breaches happening all the time that we don't hear anything about," she told AFP.

"Companies have been gathering data because it's seen to be valuable, without fully understanding the potential risks."

(T.Burkhard--BBZ)

Advertisement Image