Repeat hacks highlight Australia's cyber flaws / Photo: Muhammad FAROOQ - AFP
-
From 'flop' to Super Bowl favorite: Sam Darnold's second act
-
Man sentenced to life in prison for plotting to kill Trump in 2024
-
Native Americans on high alert over Minneapolis crackdown
-
Dallas deals Davis to Wizards in blockbuster NBA deal: report
-
Panama hits back after China warns of 'heavy price' in ports row
-
Strike kills guerrillas as US, Colombia agree to target narco bosses
-
Wildfire smoke kills more than 24,000 Americans a year: study
-
Telegram founder slams Spain PM over under-16s social media ban
-
Curling kicks off sports programme at 2026 Winter Olympics
-
Preventative cholera vaccination resumes as global supply swells: WHO
-
Wales' Macleod ready for 'physical battle' against England in Six Nations
-
Xi calls for 'mutual respect' with Trump, hails ties with Putin
-
'All-time great': Maye's ambitions go beyond record Super Bowl bid
-
Shadow over Vonn as Shiffrin, Odermatt headline Olympic skiing
-
US seeks minerals trade zone in rare Trump move with allies
-
Ukraine says Abu Dhabi talks with Russia 'substantive and productive'
-
Brazil mine disaster victims in London to 'demand what is owed'
-
AI-fuelled tech stock selloff rolls on
-
White says time at Toulon has made him a better Scotland player
-
Washington Post announces 'painful' job cuts
-
All lights are go for Jalibert, says France's Dupont
-
Artist rubs out Meloni church fresco after controversy
-
Palestinians in Egypt torn on return to a Gaza with 'no future'
-
US removing 700 immigration officers from Minnesota
-
Who is behind the killing of late ruler Gaddafi's son, and why now?
-
Coach Thioune tasked with saving battling Bremen
-
Russia vows to act 'responsibly' once nuclear pact with US ends
-
Son of Norway's crown princess admits excesses but denies rape
-
Vowles dismisses Williams 2026 title hopes as 'not realistic'
-
'Dinosaur' Glenn chasing skating gold in first Olympics
-
Gaza health officials say strikes kill 23 after Israel says shots wounded officer
-
Italy foils Russian cyberattacks targeting Olympics
-
Figure skating favourite Malinin feeling 'the pressure' in Milan
-
Netflix film probes conviction of UK baby killer nurse
-
Timber hopes League Cup can be catalyst for Arsenal success
-
China calls EU 'discriminatory' over probe into energy giant Goldwind
-
Sales warning slams Ozempic maker Novo Nordisk's stock
-
Can Vonn defy ACL rupture to win Olympic medal?
-
Breakthrough or prelude to attack? What we know about Iran-US talks
-
German far-right MP detained over alleged Belarus sanctions breach
-
MSF says its hospital in South Sudan hit by government air strike
-
Merz heads to Gulf as Germany looks to diversify trade ties
-
Selection process for future Olympic hosts set for reform
-
Serbian minister on trial over Trump-linked hotel plan
-
UK PM says Mandelson 'lied', regrets appointing him US envoy
-
Cochran-Siegle tops first Olympic downhill training
-
Gaza health officials say strikes kill 21 after Israel says shots wounded officer
-
Injured Vonn's Olympic bid is 'inspirational', ski stars say
-
Albania arrests 20 for toxic waste trafficking
-
US-Africa trade deal renewal only 'temporary breather'
NYSE - LSE
| CMSD | -0.25% | 23.88 | $ | |
| SCS | 0.12% | 16.14 | $ | |
| CMSC | -0.51% | 23.54 | $ | |
| BCC | 5.97% | 90.32 | $ | |
| RIO | -0.05% | 96.32 | $ | |
| JRI | 0.04% | 13.125 | $ | |
| RBGPF | 0.12% | 82.5 | $ | |
| BCE | 1.08% | 26.385 | $ | |
| RYCEF | -2.41% | 16.6 | $ | |
| NGG | 2.36% | 88.31 | $ | |
| RELX | -1.8% | 29.97 | $ | |
| BTI | -0.11% | 61.805 | $ | |
| GSK | 7.09% | 57.41 | $ | |
| AZN | 1.92% | 187.92 | $ | |
| VOD | 2.96% | 15.715 | $ | |
| BP | 1.01% | 39.215 | $ |
Repeat hacks highlight Australia's cyber flaws
Inadequate privacy safeguards and the stockpiling of sensitive customer information have made Australia a lucrative target in the eyes of foreign hackers, cybersecurity experts told AFP following a series of major data breaches.
Medibank, Australia's largest private health insurer, recently confirmed that hackers had accessed the data of 9.7 million current and former customers, including medical records related to drug abuse and pregnancy terminations.
Telecom company Optus fell prey to a data breach of similar scale in late September, during which the personal details of up to 9.8 million people were accessed.
Both incidents sit comfortably among the largest data breaches in Australian history.
Australian National University cybersecurity expert Thomas Haines said many companies had been hoarding personal data that they should not have been hanging on to.
"There was a famous line for a while: Data is the new oil," he told AFP.
"If data is the new oil, then we're living the era of the weekly oil spill."
Haines contrasted Australia's approach with that of the European Union, which in 2018 adopted sweeping privacy reforms limiting how organisations collect, use and store personal data.
"There have got to be incentives in place to stop companies hoarding data they don't need, or to penalise those companies for big leaks. Europe has done this," he said.
"At the moment the business incentives are basically along the lines of: Let's just keep a whole bunch of data."
Haines said Medibank appeared to be an exception, in that most of the sensitive information within its databases had been stored for good reason.
- Hacking 'for profit' -
Australia's comparatively weak safeguards against identity theft meant it was also easier to exploit stolen personal information, Haines said.
"All they need to know is your passport, your driver's licence and some other things -- and then I can start taking out loans in your name."
Haines said European countries such as Norway had much more stringent requirements involving face-to-face contact.
Dennis Desmond, a former FBI agent and US Defense Intelligence Agency officer, said most hackers were searching for particular types of data.
"For-profit hackers are going after healthcare data, they're going after identity data and credentials to access systems," he told AFP.
"There is a profit motivation there, otherwise they wouldn't be risking jail and prosecution."
The Medibank hackers this week started leaking stolen data to a dark web forum, after the company refused to pay a US$9.7 million (Aus$15 million) ransom.
The Optus breach led to the theft of customers' names, birth dates, and passport numbers.
- Russia blamed -
Australian Federal Police Commissioner Reece Kershaw on Friday blamed the Medibank cyberattack on a team of hackers based in Russia.
"We believe those responsible for the breach are in Russia," he told reporters.
"Our intelligence points to a group of loosely affiliated cyber criminals who are likely responsible for past significant breaches in countries across the world."
Medibank data leaked to the dark web so far has included hundreds of potentially-compromising medical records related to drug addiction, alcohol abuse and sexually-transmitted infections.
Home Affairs Minister Clare O'Neil conceded on Friday the country's cyber defences had not always been up to scratch.
University of Sydney data researcher Jane Andrew said one major flaw was that Australian companies were not always obliged to report data breaches.
"There are heaps of data breaches happening all the time that we don't hear anything about," she told AFP.
"Companies have been gathering data because it's seen to be valuable, without fully understanding the potential risks."
X.M.Francisco--PC
