CNC's Top Cyber Stories from Last Month: Insights Post-Cyber Awareness Month
As we transition into the vibrant season of spring 2023, the CNC Newsroom is pleased to present our regular monthly roundup, this time featuring the valued contributions of guest cyber expert Tim Dole. In this edition, we zero in on Australia's cyber environment, exploring the robust initiatives and concerted efforts that regulators and enterprises are making to cultivate a secure digital space for all.
October, which commemorates the 20th anniversary of Cyber Awareness Month, has brought increased focus on the necessity of robust cyber defences within Australia, highlighting a commitment to rigorous protection and education against digital threats.
With government-led campaigns abuzz, it's evident there's a national rhetoric emphasising the imperative to thwart cyber attackers. Echoing this sentiment, regulators and cybersecurity ministers are taking a firm stance, signalling that cyber infractions will face serious consequences. Amidst this resolve, we've witnessed an uptick in cyber offensives from state-sponsored entities, targeting critical financial institutions and, most recently, the Administrative Appeals Tribunal—a key arm of the Federal Government's Home Affairs. Guest expert Tim Dole sheds light on these developments, underscoring that the past month has served as a stark demonstration of cyber warfare's ongoing role as a strategy in international conflicts, and reinforcing the critical need for unwavering vigilance in cybersecurity.
Cybersecurity Awareness Month 2023: A Global Call To Action
Marking its 20th anniversary, Cybersecurity Awareness Month has seen a notable amplification in its global outreach, with the CNC editorial team spotlighting this milestone. The commemoration is more pertinent than ever, as international agencies including ENISA, CISA, and counterparts in Australia, collectively escalate their campaigns to advocate for robust cyber safety practices. This heightened focus responds to the surge in sophisticated, organised international hacking groups that pose a substantial threat to national and international infrastructure, particularly within the financial systems. These agencies are working tirelessly to counteract the escalating cyber attacks that are becoming increasingly prevalent in our digitally interconnected world, emphasising the importance of international cooperation and shared strategies in safeguarding our global cyber infrastructure.
Cyber Vulnerabilities Exposed: The Super SA Data Breach
In October, breaking news headlines were dominated by a significant cybersecurity incident at Super SA, thrusting the issue of cyber attacks on financial institutions into the national spotlight. This breach, which has shaken the confidence of Super SA's members, is part of a larger pattern of cyber incursions targeting Australian financial bodies in 2023. The article highlighted the breach's connection to an earlier 2019 attack, laying bare the risks posed by third-party providers to sensitive financial data. South Australian Treasurer Stephen Mullighan's sharp criticism in Parliament underscored the severity of the issue and the need for immediate action in strengthening cybersecurity frameworks. This incident acts as a wake-up call, reinforcing the critical demand for updated, more stringent cybersecurity measures to protect Australia's financial infrastructure from sophisticated and evolving digital threats.
ACMA Takes Action Against Two Telcos For Anti-Scam Rule Breaches
October 20, 2023 – The Australian Communications and Media Authority (ACMA) has taken firm action against Vonage Business Inc and Twilio Inc for breaches of anti-scam regulations concerning SMS sender IDs. In the wake of a 188% spike in financial losses from SMS scams, the regulatory body has underscored the critical nature of telecom compliance. Non-compliant companies could face hefty fines of up to $250,000, reflecting the severity of the situation. This crackdown is part of a broader initiative to reinforce consumer protection, as ACMA strives to keep Australian standards on par with the European Commission’s enhanced consumer safety measures in payment services
ASIC & Clare O’Neil Unite: A Cybersecure Australia By 2030
In October 2023, the Australian Securities and Investments Commission (ASIC) declared an aggressive stance against corporate leaders who neglect cybersecurity. ASIC Chairman Joe Longo warned of potential legal repercussions for board members and executives if they fail to prioritise cyber resilience. This approach is backed by ASIC's "cyber pulse survey," which assesses the cyber readiness of Australian companies. The urgency for improved cybersecurity measures is supported by the Department of Home Affairs, especially after high-profile breaches at firms like Optus and Medibank. ASIC's strategy focuses on resilience, preparing companies to handle and recover from cyber incidents. The regulator implies that significant investment in cybersecurity is expected, aligning with the government's initiative led by the Minister for Home Affairs, Clare O’Neil, to strengthen national cyber defences as part of a comprehensive cybersecurity strategy.
DDoS Strike On Home Affairs: Is Australia Truly Cyber-Resilient?
This article, published on 09 October 2023, outlines the state of fragility in the Federal government's cyber protection and awareness. In the wake of Australia's commitment to aid Ukraine, the Department of Home Affairs suffered a DDoS attack, claimed by a pro-Russian hacking group. The disruption, lasting approximately five hours, has raised serious concerns about national cyber defence capabilities. Shadow Minister James Paterson branded the breach as an "embarrassing" display of unpreparedness in the face of national security threats. While the Department was able to resume website operations without any reported data compromises, the event has prompted scrutiny of the government's recent claims of enhanced cyber resilience. Amidst Australia's aim to become the most cyber resilient nation by the decade's end, this episode underscores the urgent need for more robust cybersecurity measures to protect against sophisticated and evolving cyber threats.
Urgent Patching Recommended as Atlassian Enters Dirty Dozen amid Chinese Cyber Onslaught
In September, a grave security oversight within Atlassian's software suite was first filed by CNC Cyber Investigation and subsequently garnered attention from mainstream media, with 'The Register' reporting on it in October. The vulnerability, part of the infamous 'Dirty Dozen' revealed by the Five Eyes alliance and denoted as CVE-2023-22515, severely impacted versions 8.0.0 to 8.5.1 of the Confluence Server and Data Center. Hackers, exploiting this flaw, could anonymously create administrative accounts on exposed instances. Atlassian has since issued updates, but the fixes don't expel intruders who have already infiltrated the systems, leaving organisations scrambling to secure their networks. In a concerning development, Microsoft has implicated Chinese state-sponsored actors in utilising this critical vulnerability to infiltrate customer systems. This accusation amplifies the urgency for affected organisations to remediate and fortify their defences, especially in light of Atlassian's reticence about the breadth of the exploitation, though they've confirmed that Atlassian Cloud sites remain secure.
