Repeat hacks highlight Australia's cyber flaws / Photo: Muhammad FAROOQ - AFP
-
EU says India's Russian oil purchases, military drills hinder closer ties
-
Gold worth 600,000 euros stolen in Paris museum heist
-
Top music body says AI firms guilty of 'wilful' copyright theft
-
Trump gets royal treatment on UK state visit
-
Ostrich and emu ancestor could fly, scientists discover
-
Former boxing world champion Hatton 'excited for the future' before death: family
-
Stocks, dollar calm before expected US rate cut
-
After mass Nepal jailbreak, some prisoners surrender
-
Poison killed Putin critic Navalny, wife says
-
Australia coach expects Cummins to play 'key part' in Ashes
-
Hong Kong leader plans to fast-track border mega-project
-
Ben & Jerry's co-founder quits, says independence 'gone'
-
Erasmus keeps faith with Springbok squad after record All Blacks win
-
Hong Kong leader unveils plan to boost growth with border mega-project, AI push
-
Israel says opening new route for Gazans fleeing embattled city
-
New Zealand's historic athletics worlds a decade in the making
-
Trump to get royal treatment on UK state visit
-
Benfica sack Lage after shock defeat, Mourinho next?
-
Israel says to open new route for Gazans fleeing embattled city
-
Nestle share price slips as chairman follows CEO out the door
-
German suspect in Madeleine McCann case freed from prison
-
US tennis star Townsend apologises for 'crazy' Chinese food post
-
Peru evacuates 1,600 tourists from Machu Picchu amid protest
-
Nepal mourns its dead after anti-corruption protests
-
UK inflation stable ahead of central bank rate call
-
India checks Maoist rebel offer of suspending armed struggle
-
Israel to open new route for Gazans fleeing besieged city
-
Lower shipments to US, China weigh on Singapore August exports
-
Inside the hunt for the suspect in Charlie Kirk's killing
-
Junta accused of coveting power in crucial Guinea referendum
-
TV writer Hagai Levi: boycott risks hitting Israel's critical voices
-
Sri Lanka to ban predatory pet fish to protect ecosystems
-
'Genius' De Bruyne leads Napoli in emotional return to Man City
-
World number one Sabalenka out of China Open with injury
-
Estimated 16,500 climate change deaths during Europe summer: study
-
'Fifa' successor 'FC 26' polishes the beautiful game
-
Park Chan-wook's murder comedy to open Asia's biggest film festival
-
India's gaming fans eye illegal sites after gambling ban
-
EU business lobby head says China rare earths snag persists
-
Botox under burqas: Cosmetic surgery in vogue in Afghanistan
-
Asian stocks swing as traders bide time ahead of US rate decision
-
Australia, Papua New Guinea delay mutual defence treaty
-
PGA's 2026 opener will not be played at drought-hit Kapalua
-
Toucans, tortoises saved in major Brazil trafficking bust
-
Britain rolls out royal red carpet for Trump's state visit
-
US Fed set for first rate cut of 2025 as Trump pressure looms
-
Broadway jeering Caesars Times Square casino bet
-
Rojas, McLaughlin-Levrone go for gold at world champs
-
Colombian FARC leaders ordered to make reparations for over 21,000 kidnappings
-
Chris Gayle Signs as SIXR Cricket Icon Player, Kicks Off Global #SIXRChallenge
NYSE - LSE
| RIO | -0.44% | 63.44 | $ | |
| BTI | -0.43% | 55.79 | $ | |
| CMSC | 0.29% | 24.39 | $ | |
| NGG | -1.04% | 70.88 | $ | |
| SCS | 0.06% | 16.88 | $ | |
| RYCEF | -0.06% | 15.64 | $ | |
| BP | 0.64% | 34.43 | $ | |
| CMSD | 0.04% | 24.46 | $ | |
| BCE | -1.11% | 23.43 | $ | |
| GSK | -0.62% | 40.05 | $ | |
| VOD | -0.34% | 11.77 | $ | |
| RBGPF | 0% | 77.27 | $ | |
| AZN | -0.63% | 77.56 | $ | |
| RELX | -0.36% | 46.69 | $ | |
| JRI | -1.01% | 13.92 | $ | |
| BCC | -3.31% | 82.39 | $ |
Repeat hacks highlight Australia's cyber flaws
Inadequate privacy safeguards and the stockpiling of sensitive customer information have made Australia a lucrative target in the eyes of foreign hackers, cybersecurity experts told AFP following a series of major data breaches.
Medibank, Australia's largest private health insurer, recently confirmed that hackers had accessed the data of 9.7 million current and former customers, including medical records related to drug abuse and pregnancy terminations.
Telecom company Optus fell prey to a data breach of similar scale in late September, during which the personal details of up to 9.8 million people were accessed.
Both incidents sit comfortably among the largest data breaches in Australian history.
Australian National University cybersecurity expert Thomas Haines said many companies had been hoarding personal data that they should not have been hanging on to.
"There was a famous line for a while: Data is the new oil," he told AFP.
"If data is the new oil, then we're living the era of the weekly oil spill."
Haines contrasted Australia's approach with that of the European Union, which in 2018 adopted sweeping privacy reforms limiting how organisations collect, use and store personal data.
"There have got to be incentives in place to stop companies hoarding data they don't need, or to penalise those companies for big leaks. Europe has done this," he said.
"At the moment the business incentives are basically along the lines of: Let's just keep a whole bunch of data."
Haines said Medibank appeared to be an exception, in that most of the sensitive information within its databases had been stored for good reason.
- Hacking 'for profit' -
Australia's comparatively weak safeguards against identity theft meant it was also easier to exploit stolen personal information, Haines said.
"All they need to know is your passport, your driver's licence and some other things -- and then I can start taking out loans in your name."
Haines said European countries such as Norway had much more stringent requirements involving face-to-face contact.
Dennis Desmond, a former FBI agent and US Defense Intelligence Agency officer, said most hackers were searching for particular types of data.
"For-profit hackers are going after healthcare data, they're going after identity data and credentials to access systems," he told AFP.
"There is a profit motivation there, otherwise they wouldn't be risking jail and prosecution."
The Medibank hackers this week started leaking stolen data to a dark web forum, after the company refused to pay a US$9.7 million (Aus$15 million) ransom.
The Optus breach led to the theft of customers' names, birth dates, and passport numbers.
- Russia blamed -
Australian Federal Police Commissioner Reece Kershaw on Friday blamed the Medibank cyberattack on a team of hackers based in Russia.
"We believe those responsible for the breach are in Russia," he told reporters.
"Our intelligence points to a group of loosely affiliated cyber criminals who are likely responsible for past significant breaches in countries across the world."
Medibank data leaked to the dark web so far has included hundreds of potentially-compromising medical records related to drug addiction, alcohol abuse and sexually-transmitted infections.
Home Affairs Minister Clare O'Neil conceded on Friday the country's cyber defences had not always been up to scratch.
University of Sydney data researcher Jane Andrew said one major flaw was that Australian companies were not always obliged to report data breaches.
"There are heaps of data breaches happening all the time that we don't hear anything about," she told AFP.
"Companies have been gathering data because it's seen to be valuable, without fully understanding the potential risks."
H.E.Young--AMWN
