2024 will forever be remembered as the 'Year of Global Outages,' revealing the fragility of over-automated systems. A single cybersecurity provider’s disruption triggered global chaos—freezing transactions, grounding flights, and crippling healthcare. The call for resilience is deafening.
As we close the book on 2024, we welcome you to our Holiday Edition, where we unwrap the biggest stories that defined a whirlwind year in AI and cyber affairs—a celebration of relentless innovation, jaw-dropping rivalries, and high-stakes power plays that kept us captivated all year round.
Cisco faces fallout from a massive data leak exposing critical files, while China accuses the U.S. of cyber espionage amid rising tech tensions. AI governance sparks debate as Europe enforces strict rules, and ASIC sues HSBC for $23M scam failures. Global cyber affairs take center stage this week.
Australia's 2023-2030 Cyber Security Strategy boosts digital defences, shifts telecom under critical infrastructure laws, and invests $290.8M in SMEs. It focuses on workforce upskilling, data retention, and resilience against growing cyber threats.
The Australian Government's unveiling of the 2023-2030 Australian Cyber Security Strategy (ABC) marks a pivotal moment in the nation's approach to digital security. Spearheaded by Security Minister Clare O'Neil, the strategy's release is particularly timely, following the substantial data breaches impacting millions of Optus and Medibank customers and the alarming 23% rise in cybercrime reports over the previous year.
The CNC editorial news review on cyber policy focused on the federal data retention requirements. This review aims to mitigate risks and reduce burdens associated with the prolonged storage of significant data volumes.
The strategy also underscores the expansion of the Digital ID program. This initiative facilitates online verification without excessive personal data sharing, thereby limiting sensitive information exposure for both individuals and entities.
In a significant regulatory shift, telecommunication providers are set to align with other critical infrastructure sectors.
Home Affairs Minister Clare O’Neil outlined new plans to class telecommunications as ‘critical infrastructure’ for the first time under the Security for Critical Infrastructure Act (SOCI).
This move involves transferring the security regulation of the telecom sector from the Telecommunications Act to the Security of Critical Infrastructure Act
Financially, the strategy is substantial, with nearly half of its funding - $290.8 million - earmarked for small and medium-sized businesses. This investment will support public awareness, combat cybercrime, disrupt the ransomware business model, and enhance the security of Australian identities.
Furthermore, there is a planned investment in establishing consumer standards for smart devices and software. This is coupled with initiatives to professionalise the cyber workforce and accelerate the cyber industry's growth.
A notable allocation of $9.4 million is dedicated to developing a threat-sharing platform for the health sector, with potential expansion to other fields.
Minister O'Neil emphasised the strategy's critical nature, stating,
“The strategy is bold and ambitious, and it has to be. The last five years have made one thing abundantly clear: we simply can’t continue as we are.”
In an ABC interview with Alastair MacGibbon, Chief Strategy Officer at Cyber CX, the strategic implications of the ABC were further explored. MacGibbon emphasised the resolution of the Australian labour force shortage and the necessity for both domestic training programs and international talent recruitment to enhance cyber capabilities.
"Upskilling is crucial. We must leverage existing skill sets and strategically augment them to address this widespread issue. It's about changing the narrative around our country’s ability to tackle cyber threats effectively.”
- MacGibbon highlighted.
Moreover, he stressed the importance of talent distribution and increased training opportunities, stating, "We're committed to finding the right people over three years. If other companies, like Microsoft and others, join in training people, it would significantly boost our capabilities."
The sentiment resonates across various layers within the cybersecurity services industry.
Mark Mantakoul, General Manager at Zirilio, provides valuable insight into the resilience challenges faced by Australia’s cybersecurity workforce.
Zirilio's general manager emphasises the need for increased attention from federal governments to support business services with adaptive policies, thereby enhancing the future talent pool.
“By prioritising the development of cyber skills, the strategy intelligently addresses the often-overlooked human element in cybersecurity, ensuring a well-equipped workforce ready for future challenges.”
– Mr. Mantakoul reaffirmed.
Mantakoul underscores the paramount importance of National experts in cybersecurity acquiring the skills necessary to deliver first-response services.
The 2023-2030 Australian Cyber Security Strategy, thus, represents a comprehensive and forward-looking approach, aiming to fortify Australia’s cyber defences in an increasingly digitised world.
Christopher Wray resigns as FBI Director, signaling a shift under Trump. With Kash Patel as a potential successor, concerns grow over the FBI's independence and its impact on cybersecurity, financial crimes, and corporate governance.
Australia's government plans to make tech giants pay for local journalism, leveling the media playing field. Meanwhile, Meta faces global outages, sparking reliability concerns, and unveils nuclear ambitions with a $10B AI supercluster in Louisiana. Big tech is reshaping energy and media landscapes.
Chinese firms may ramp up U.S. solar panel production to offset higher tariffs anticipated under Trump's 2025 presidency. Despite policy shifts, strong U.S. solar demand drives adaptation as global clean energy competition intensifies.
As Black Friday scams surge, Australians face rising threats with $500K lost to fake sites. Meanwhile, Salt Typhoon targets telecom giants in a global espionage campaign. RomCom exploits zero-day vulnerabilities on Firefox and Windows, while Trump eyes an 'AI czar' to reshape US tech policy.
