Commentary: Two incidents were reported in the press this week. Amnesty International Australia’s report on a breach from December has some interesting notes surrounding the “serious harm” clause of the Australian Breach Notifications rules. HWL Ebsworth Lawyers is a good reminder for Privacy Week about excessive storage and encryption of PII data.

If you missed it, last week was Australian Privacy Week, the highlight being that we are getting a stand-alone Privacy Commissioner to provide focus just on privacy and hopefully some better funding.

I’m still digging through audit reports from the various states and fed; only a few more to write up from this year. Victoria’s turn this time, if you are audited externally by third parties, these are worth passing on to your teams.

Have a great #AusCERT2023

Steve…K.

Back to Basics: Seven privacy questions all charities should be asking

By Gilbert + Tobin on May 05, 2023 After the highly publicised data breaches that have occurred in the Australian market recently, the spotlight on privacy obligations is brighter than

Privacy Awareness Week Part I- The state of play

By K&L Gates LLP on May 05, 2023 The theme of this year’s Privacy Awareness Week (PAW) is “back to basics”. It’s fitting to consider some lessons arising from recent high-profile

Privacy Awareness Week Part II- Get in the know and get privacy right

By K&L Gates LLP on May 05, 2023…releasing 116 recommendations to amend the Privacy Act. The federal government has also made proposals to consider a new Cyber Security Act and …

Privacy Awareness Week Part III- The importance of being privacy prepared

By Dadar Ahmadi-Pirshahid on May 05, 2023 The APPs require organisations to “take reasonable steps to implement practices, procedures and systems that ensure compliance with the APPs”. …

Privacy Awareness Week Part IV – Privacy Priorities

By K&L Gates LLP on May 05, 2023…and training. Have appropriate and robust privacy and security governance arrangements in place including training, resources and documented …

Queensland’s information privacy reforms present opportunities for alignment with Commonwealth and overseas regimes

By Eleanor Dickens on May 05, 2023 With the Commonwealth and Queensland both undertaking comprehensive reviews of their privacy frameworks in 2022, there is a unique opportunity for …

Audit: Victoria audit warns of weak IT controls in council systems | iTnews

By Steven Kirby on May 05, 2023 Victorian Local Government Audit Report 27 February 2023 Victoria audit reports a significant rise in IT control weaknesses in council systems Calls …

Incident: Amnesty International Australia slow with disclosure after December hack | SMH

By Steven Kirby on May 05, 2023 Australian Not-for-profit Hacked, 28 April 2023 Amnesty International Australia slow with disclosure after December hack Amnesty said none of the …

Medibank hit with fresh class action after data hack

By Tara Cosoleto on May 05, 2023 The personal information of close to 10 million Medibank customers was compromised and published online in a data breach, triggering multiple legal …

ACSC launches new smart cities cyber safety resource – Government News

By Staff Writers on May 04, 2023 The Australian Cyber Security Centre has launched a comprehensive new smart cities resource put together in collaboration with leading international …

Australia to reinstate standalone privacy commissioner

By Ry Crozier on May 04, 2023 The government is set to reinstate a dedicated privacy commissioner, carving the responsibilities out of Australian information commissioner Angelene …

Incident: Australian law firm HWL Ebsworth hit by Russian-linked Blackcat ransomware attack | The Guardian

By Steven Kirby on May 02, 2023 Australian Law Firm Ransomware Attack, 02 May 2023 Australian law firm HWL Ebsworth hit by Russian-linked Blackcat ransomware attack Hacking 4TB of …

‘Whack-a-mole’: NAB’s 38 per cent increase in scam attempts

By John Collett on May 02, 2023 One of the country’s biggest banks has recorded a huge increase in scam notifications it has received from its customers, as alarm grows about the …

Australia’s privacy and information commissioners rally for Privacy Awareness Week

By By Anna Macdonald on May 02, 2023 Australia’s privacy and information commissioners have rallied across the jurisdictions to call for agencies to make sure they have the fundamentals …

“It’s not great”: CyRise closure leaves Australia without a cybersecurity startup accelerator

By Ben Ice on May 02, 2023 NTT and Deakin University have decided to close cybersecurity-focused CyRise Accelerator, a collaboration they opened in 2017

UNSW calls on government to protect bug bounty hunters

By Richard Chirgwin on May 02, 2023 Australia’s current cyber security consultations provide a chance to protect vulnerability researchers, according to UNSW. In a submission [pdf] to …

NSW Digital ID is being tested by 36 people

By Jeremy Nadel on May 02, 2023 The NSW government is piloting its Digital ID with 36 participants that have so far tested the usability of the setup process and a proof-of-age …

Phone scams alert kicks of Privacy Awareness Week

By Gordon Peters on May 02, 2023 A timely warning about the dangers of being hit by phone scammers seeking out personal details for potential financial gain has been issued for the …

AU Info and Cyber Security News Last Week 2023-05-01

By Steven Kirby on May 01, 2023 Commentary: Another week has gone, public holidays, no major breaches (still a few smaller breaches for me to document). With the extra free time …