Rules of Cyber Engagement

Rules of Cyber Engagement 1

Rules of Cyber Engagement

The Bureau (SBS On Demand) is a French TV series that tells the story of intelligence agents from the DGSE (French intelligence agency). Agents are geographically posted throughout the world to collect targets (people) and influence state actors. Season 4 has really focused its attention on Russia and cyber warfare, a grave rabbit-hole of code, hackers and cyber attacks that seek to dismantle political stability.

The drama and intensity of this series led me to wonder, what responsibility is it of businesses and governments to protect their sensitive data? Are there repercussions, beyond profit and loss, for businesses that don’t take necessary steps to ensure the privacy of their clients?

ZDNet wrote a story that directly answers my questions. Court proceedings began this week in the Federal Court of Australia brought about by ASIC (the corporate regulator) against a financial services company, RI Advice Group Pty Ltd (RI). ASIC alleges that a malicious actor took remote virtual residence on Frontier’s server, an authorised representative of RI. The hackers camped in the data depths for at least 155 hours, gaining access to sensitive data including client information.

ASIC believes that RI did not uphold provisions of the Corporations Act 2001 that include a responsibility to implement adequate policies and systems to ensure the protection of company data and an ability to reasonably manage cyber security risk. ASIC has resources available to organisations to encourage dialogue, strategy and action towards greater cyber resilience and it is a legal requirement for companies to take measurable steps to protect the privacy of clients and employees. Good cyber practice is good business practice, be good.

Faster Networks help businesses protect their digital assets. We are a cyber security partner that brings the best software solutions that anticipate and fix digital vulnerabilities. Our areas of expertise includes Vulnerability Management, Security Orchestration Automation and Response (SOAR), Application Security, Infrastructure Security, Distributed Denial of Service (DDoS) Protection and Application Pentesting.

Contact us on +61 3 9016 0085 or send us an email to learn more about our cyber security services.