Privacy, Data Protection & Information Management – Page 8

New Cyber Security Evaluation Tool released by US Homeland Security for organisations to self-test their security systems

Jul 14 2021

By Cameron Abbott, Warwick Andersen and Jacqueline Patishman

The United States Department of Homeland Security has developed the Cyber Security Evaluation Tool (CSET) which provides a systematic (and repeatable) process that critical infrastructure asset owners can use to assess and improve their cyber security management systems. This tool has a particular focus on the security of industrial control systems and information networks.

New US / Aus cross-border data access regime

Jul 12 2021

By Cameron Abbott, Warwick Andersen and Jacqueline Patishman

The Telecommunications Legislations Amendment (International Orders) Bill 2020 has just cleared both houses of parliament. The new bill establishes a reciprocal cross-border data access regime between the United States and Australia which will allow for cross-border communications between foreign governments for national security and law enforcement purposes.

REvil strikes again – ransomware attack on UnitingCare Queensland

Jun 28 2021

By Cameron Abbott and Jacqueline Patishman

Following a ransomware infection in late April, UnitingCare Queensland has suffered a nearly 2 month long ordeal to regain control of its systems. UnitingCare was a victim of malware called Sodinokibi/REvil which encrypted its files and attempted to delete backups.

Essential Eight cyber security controls to be mandated for almost all federal departments and agencies

Jun 14 2021

By Cameron Abbott, Warwick Andersen, Rob Pulham and Jacqueline Patishman

It’s been reported that the Federal Government is planning on making implementation of the Essential Eight cyber security controls for all Commonwealth entities (excluding corporate Commonwealth entities). The Essential Eight is a baseline set of security strategies designed to minimise the risk of security incidents. At this stage, no guidance has been provided as to the timeline for when this might happen; however, a decision as to the preferred approach is planned to be made by the end of the year.

$300 million of the Victorian Budget set aside to improve cyber security

May 27 2021

By Cameron Abbott and Jacqueline Patishman

The recently released Victorian budget shows that more than $300 million of the 2021-2022 state budget is to be used to improve the government’s ability to prevent, detect and control cyber risks. Well sort of… it also includes a range of more vanilla possible projects such as case administration systems at AAT, upgrading radio communication for Forest Fire Management Fire Victoria staff – so perhaps it is not as large a cybersecurity spend as it first looks.

May 02 2021

By Cameron Abbott, Michelle Aggromito, Jacqueline Patishman and Emily Gamaroff

In a bid to maintain stability in the Indo-Pacific region, Australia has pledged $37.5 million to bolster the security and development of critical technology in neighboring countries as part of its updated International Cyber Engagement Strategy. The funding aims to promote the resilience of critical technologies in Southeast Asia and to support Australia’s Pacific neighbours by improving online safety, counter misinformation and to fight cybercrime.

Apr 01 2021

By Cameron Abbott, Warwick Andersen, Rob Pulham and Max Evans

Channel Nine has suffered the largest cyber attack on a media company in Australia’s history, according to reports from IT News, the AFR and Nine News.

The cyber attack, reported by Channel Nine as a variation of a ransomware attack, struck early Sunday morning, resulting in television and digital production systems being offline for more than 24 hours. The attack impaired Channel Nine’s ability to broadcast from its Sydney studios, forcing the media outlet to shift operations to its Melbourne studios.

Feb 18 2021

By Cameron Abbott, Rob Pulham and Jacqueline Patishman

News reports have surfaced reporting that a hacker in the US gained access to the Oldsmar’s water treatment plant system in an attempt to release a corrosive chemical into the Oldsmar’s water supply.

Feb 08 2021

By Cameron Abbott, Warwick Andersen, Michelle Aggromito and Max Evans

As a result of a recent class action, the Department of Home Affairs has been ordered by the Australian Information Commissioner, Angelene Falk, to pay compensation to asylum seekers after the Department was found to have interfered with the privacy of 9,251 detainees.

According to a media release from the Office of the Australian Information Commissioner (OAIC) , the relevant breach stemmed from February 2014, where the Department published on its website a “Detention Report”, which had embedded within it a Microsoft Excel spreadsheet containing the personal information (including full names, date of birth and period of immigration detention) of 9,258 individuals who were in immigration detention at that time.

Nov 19 2020

By Cameron Abbott and Keely O’Dowd

On 1 December 2020, the New Zealand Privacy Act 2020 will come into operation and repeal and replace the Privacy Act 1993.

The Privacy Act 2020 modernises New Zealand’s privacy laws and seeks to keep pace with international standards and technology. While New Zealand’s new privacy legislation is not as onerous as other international privacy laws, such as the GDPR, it still introduces significant changes including:

mandatory data breach notification;
new investigative and regulatory powers for the New Zealand Privacy Commissioner; and
new criminal offences and penalties, including fines of up to $10,000.

Catagory:Privacy, Data Protection & Information Management

New Cyber Security Evaluation Tool released by US Homeland Security for organisations to self-test their security systems

New US / Aus cross-border data access regime

REvil strikes again – ransomware attack on UnitingCare Queensland

Essential Eight cyber security controls to be mandated for almost all federal departments and agencies

$300 million of the Victorian Budget set aside to improve cyber security

Australia’s international cyber strategy pivots towards critical technology in neighboring countries

Even the Best Fall Down Sometimes: Nine Network suffers large-scale cyber attack

City of Oldsmar, Florida narrowly avoids ‘hot water’ in remote cyberattack on its infrastructure

A Home Affair: Department of Home Affairs ordered to compensate Asylum Seekers following inadvertent disclosure

Less than two weeks to go: New Zealand Privacy Act commences 1 December 2020