14 Oct Cyber reportage – it’s your job
There is encouraging new Australian legislation that puts the onus on companies to report cyber attacks, a huge shift according to Andrew Tillett, for the Australian Financial Review. The mandatory reporting requirements include “critical infrastructure providers – such as banks, defence contractors and power and telecommunications companies”.
Private sector companies are notorious under reporters of cyber attacks, potentially a symptom of blaming and shaming the victim, commercial reputation and financial loss. We assume security vunerabilities, lame security team or strategy or tight security budgets as the reasons for cyber attacks but, don’t forget, hackers are really good at, well….hacking.
We have reported a barrage of hacking scandals in 2020, chaos inducing cyber incidents for large corporations, like Toll and Lion. The Australian government was lagging in a sophisticated response but have since injected massive funding to the Australian Signals Directorate to increase cybersecurity and defence across the entire digital landscape in Australia. We recently wrote about the Morrison government cyber cash splash here if you want to read more about security funding.
The Australian Cyber Security Centre (ACSC) believe that if businesses report hacking events early, as they happen, they can intervene to help protect other businesses and potentially stem the damage to data and dollars. Head to cyber.gov.au and you will see for yourself how this campaign is easing the path to reportage of cybercrime and security incidents. They want Australia to be “the safest place to connect online”.
When you hit the “report a crime” button on the homepage you are taken direct to a wealth of information, including whether or not this is the kind of crime that fits the brief and also current alerts that today include COVID-19 malicious cyber activity, a sextortion campaign and copy-paste compromises. The ACSC has separated the reporting of attacks by size from individuals to government departments or agencies.
The ACSC wants to be a trusted confidante to big business. They see success as an increase of reporting because that will show a strengthening bond between business and the ACSC, which inevitably will help to mitigate and intervene on cyber threats nationally.
Faster Networks help businesses protect their digital assets. We are a cyber security partner that brings the best software solutions that anticipate and fix digital vulnerabilities. Our areas of expertise includes Vulnerability Management, Security Orchestration Automation and Response (SOAR), Application Security, Infrastructure Security, Distributed Denial of Service (DDoS) Protection and Application Pentesting.