The year 2022 was marked by a sharp increase in the number of high-profile data breaches and cyberattacks, making the issue of cybercrime and privacy a matter of great concern for individuals and organisations alike. In this article, we will examine the current state of cyber defence in Australia and the measures that need to be taken to protect our sensitive information.
The Need for Proactive Measures
One of the key points discussed in the recent interview with Nadine Belany, Maila Saunders, Partner at Thompson Geer, and Dave Mansell, CEO of Haven Tech, was the need for organisations to be proactive in protecting their data. Dave Mansell highlighted that regulation alone is not going to be sufficient to address cybercrime, and that organisations need to take measures to protect their information. He also pointed out that the recent $40 million investment in cybersecurity is not enough, and called for initiatives like decentralised digital identity to receive a portion of that funding.
“Unfortunately, cybercrime has been happening for quite some time. As technology has advanced, so have the breaches of our personal data. The key takeaway is that the technology organisations are relying on to protect data is not working, and there are more important datasets hitting our digital lives that we need to protect. Decentralisation is one of the key means to solving this problem.” - Dave Mansell
The Battle Against Cybercrime
Malia Saunders praised the recent multi-agency response to the Medibank breach, which saw the creation of a permanent task force to fight cybercrime. Dave Mansell expressed frustration at the recurring issue of data breaches, and emphasised the need to be in control of protecting our sensitive information. He believes that decentralisation is one of the key solutions to this problem, as it eliminates the risk of storing sensitive information in a centralised location that is vulnerable to attack.
The Role of Privacy Champions
The role of privacy champions in corporate organisations was also discussed in the interview, with Malia Saunders explaining that privacy champions play an important role in educating staff about online privacy and security. She also highlighted the legal responsibilities of organisations and government agencies to comply with Australian privacy principles and keep personal information secure. Dave Mansell added that privacy officers in large organisations have a challenging job, but the increased penalties for victims of data breaches will raise the priority of investment in areas that help safeguard information.
In addition to this internal push for greater data security, there is a growing emphasis on the legal responsibilities of corporations, government agencies, and privacy officers. Australian privacy principles, for example, require these entities to keep personal information secure and protect it from unauthorised disclosure or use. To ensure compliance with these principles, privacy officers in large organisations must navigate a complex web of processes, procedures, and technology.
“Organisations and government agencies need to comply with Australian privacy principles, which are high-level and general in nature. They have an obligation to keep people's personal information secure and protect it from unauthorised disclosure and use.” - Malia Saunders
The government's recent move to increase penalties for data breaches, as mentioned by Malia Saunders, is a step in the right direction. By incentivizing businesses to prioritise privacy and granting additional powers to the Office of the Australian Information Commissioner, this legislative change highlights the importance of data security in today's world.
Frauds and Scams
Finally, the topic of frauds and scams was brought up, and Dave Mansell stressed the importance of individuals being vigilant and playing their part in protecting their sensitive information. Brands are starting to create scam pages on their websites, but it's important for individuals to report any unsolicited scams to organizations like Scam Watch. Dave also pointed out that the root of the problem is the data breaches and hacks that provide scammers with the information they need to execute their scams.
“We all have on average 100 usernames and passwords for various digital brands, which means that the edge of many organisations' networks is you and me, and we often become the weak spot” - Dave Mansell
As the world becomes increasingly digitised, the threat of cybercrime continues to grow. A recent report by the Australian Cyber Security Centre (ACSC) found that there was a 47% increase in cybercrime reports in 2022, with nearly two-thirds of all reports being related to scams and fraud. The report also found that small businesses were particularly vulnerable, with 55% of all reported cybercrime incidents affecting these organisations.
The year 2022 has brought the issue of cybercrime and privacy to the forefront, and it's clear that there's much work to be done to protect our sensitive information. The experts emphasised the need for organisations to take proactive measures to protect their data, and for individuals to be vigilant and educate themselves about online privacy and security. With the right investments and mindset, Australia will continue to see throughout 2023 an increase in programs addressing the concentrated phenomenon of cybercrime and protecting our sensitive information.
