Repeat hacks highlight Australia's cyber flaws / Photo: Muhammad FAROOQ - AFP
-
What is in the new US-UK trade deal?
-
MLB Pirates fire Shelton as manager after 12-16 start
-
Alcaraz '100 percent ready' for return to action in Rome
-
Prevost becomes first US pope as Leo XIV
-
Andy Farrell holds out hope for son Owen after Lions omission
-
Roglic leads deep field of contenders at tricky Giro d'Italia
-
White smoke signals Catholic Church has new pope
-
Bill Gates speeds up giving away fortune, blasts Musk
-
LA Coliseum, SoFi Stadium to share 2028 Olympic opening ceremony
-
Trump unveils 'breakthrough' US-UK trade deal
-
Andy Farrell holds out hope for Owen Farrell after Lions omission
-
Trump calls US Fed chair 'fool' after pause in rate cuts
-
Stocks rise as US-UK unveil trade deal
-
UN says Israel school closures in east Jerusalem 'assault on children'
-
Itoje grateful for 'tremendous honour' of leading Lions in Australia
-
Cardinals to vote anew for pope after second black smoke
-
Arsenal fall short again as striker woes haunt Arteta
-
Inter turn attentions to fading Serie A title defence after Barca triumph
-
Elk could return to UK after 3,000 years as plan wins funding
-
Trump announces 'full and comprehensive' trade deal with UK
-
Putin and Xi rail against West as Ukraine reports truce violations
-
England's Itoje to captain British and Irish Lions rugby team in Australia
-
Gates Foundation to spend $200 bn through 2045 when it will shut down
-
Swiatek makes fast start at Italian Open
-
Israel's aid blockade to Gaza 'unacceptable': Red Cross
-
EU threatens to target US cars, planes if Trump tariff talks fail
-
Amnesty says UAE supplying Sudan paramilitaries with Chinese weapons
-
Bank of England cuts interest rate as US tariffs hit economy
-
Germany slams Russian 'lies' on Ukraine in WWII commemoration
-
Pakistan and India accuse each other of waves of drone attacks
-
Thrilling PSG home in on elusive Champions League trophy
-
Wolf protection downgrade gets green light in EU
-
Fijian Olympic medallist Raisuqe killed after car hit by train
-
EU parliament backs emissions reprieve for carmakers
-
Trump announces trade agreement with UK
-
Global temperatures stuck at near-record highs in April: EU monitor
-
Stocks rise as Trump signals US-UK 'trade deal'
-
Second black smoke, cardinals to vote again for new pope
-
Screams and shattered glass under Pakistan bombardment
-
Drone strikes spark civilian exodus from army-controlled Sudan aid hub
-
First responders in Gaza run out of supplies
-
Pakistan shoots down 25 Indian drones near military installations
-
Xi meets Putin in Moscow as Ukraine reports truce violations
-
Israel forces close UN schools in annexed east Jerusalem
-
Trump to announce 'trade deal' with UK
-
'Jumbo': the animated Indonesian film smashing records
-
Stocks rise on trade hopes, London boosted by reports of deal
-
Emirates airline group announces record $6.2 bn gross profit
-
Accused mushroom murderer sent children to movies before deadly meal
-
Nintendo forecasts 15 million Switch 2 sales in 2025-26
NYSE - LSE
| NGG | -3.37% | 70.202 | $ | |
| RBGPF | 4.34% | 65.86 | $ | |
| SCS | 5.21% | 10.455 | $ | |
| GSK | -0.73% | 36.9 | $ | |
| BCC | 3.06% | 89.85 | $ | |
| RELX | -0.98% | 54.34 | $ | |
| BTI | -2.09% | 43.54 | $ | |
| CMSC | 0.18% | 22.2 | $ | |
| RIO | -1.56% | 59.1 | $ | |
| RYCEF | 4.69% | 10.67 | $ | |
| AZN | -3.89% | 67.445 | $ | |
| JRI | -0.32% | 12.985 | $ | |
| BCE | 5.41% | 22.465 | $ | |
| VOD | -1.46% | 9.265 | $ | |
| BP | 1.49% | 28.555 | $ | |
| CMSD | -0.22% | 22.36 | $ |
Repeat hacks highlight Australia's cyber flaws
Inadequate privacy safeguards and the stockpiling of sensitive customer information have made Australia a lucrative target in the eyes of foreign hackers, cybersecurity experts told AFP following a series of major data breaches.
Medibank, Australia's largest private health insurer, recently confirmed that hackers had accessed the data of 9.7 million current and former customers, including medical records related to drug abuse and pregnancy terminations.
Telecom company Optus fell prey to a data breach of similar scale in late September, during which the personal details of up to 9.8 million people were accessed.
Both incidents sit comfortably among the largest data breaches in Australian history.
Australian National University cybersecurity expert Thomas Haines said many companies had been hoarding personal data that they should not have been hanging on to.
"There was a famous line for a while: Data is the new oil," he told AFP.
"If data is the new oil, then we're living the era of the weekly oil spill."
Haines contrasted Australia's approach with that of the European Union, which in 2018 adopted sweeping privacy reforms limiting how organisations collect, use and store personal data.
"There have got to be incentives in place to stop companies hoarding data they don't need, or to penalise those companies for big leaks. Europe has done this," he said.
"At the moment the business incentives are basically along the lines of: Let's just keep a whole bunch of data."
Haines said Medibank appeared to be an exception, in that most of the sensitive information within its databases had been stored for good reason.
- Hacking 'for profit' -
Australia's comparatively weak safeguards against identity theft meant it was also easier to exploit stolen personal information, Haines said.
"All they need to know is your passport, your driver's licence and some other things -- and then I can start taking out loans in your name."
Haines said European countries such as Norway had much more stringent requirements involving face-to-face contact.
Dennis Desmond, a former FBI agent and US Defense Intelligence Agency officer, said most hackers were searching for particular types of data.
"For-profit hackers are going after healthcare data, they're going after identity data and credentials to access systems," he told AFP.
"There is a profit motivation there, otherwise they wouldn't be risking jail and prosecution."
The Medibank hackers this week started leaking stolen data to a dark web forum, after the company refused to pay a US$9.7 million (Aus$15 million) ransom.
The Optus breach led to the theft of customers' names, birth dates, and passport numbers.
- Russia blamed -
Australian Federal Police Commissioner Reece Kershaw on Friday blamed the Medibank cyberattack on a team of hackers based in Russia.
"We believe those responsible for the breach are in Russia," he told reporters.
"Our intelligence points to a group of loosely affiliated cyber criminals who are likely responsible for past significant breaches in countries across the world."
Medibank data leaked to the dark web so far has included hundreds of potentially-compromising medical records related to drug addiction, alcohol abuse and sexually-transmitted infections.
Home Affairs Minister Clare O'Neil conceded on Friday the country's cyber defences had not always been up to scratch.
University of Sydney data researcher Jane Andrew said one major flaw was that Australian companies were not always obliged to report data breaches.
"There are heaps of data breaches happening all the time that we don't hear anything about," she told AFP.
"Companies have been gathering data because it's seen to be valuable, without fully understanding the potential risks."
H.E.Young--AMWN
