Australian Info and Cyber Security Last Week 5th June 2023
The Department of Defence made headlines by initially claiminh early this year that they had only a few Chinese surveillance devices on their network, but an internal audit revealed over 400. Though I don’t know if this was a cause, please be careful with your device reports and use different methods to cross-check the numbers.

Toyota finally revealed that Australian users were caught up in the overseas breach. Access key allowing access to databases was publicly available on GitHub for almost five years.

An interesting week with some good original content and commentary being published.

Steve…K.

Audit: Australian Senate Estimates reveal 435 Chinese-made surveillance devices found at defence sites

By Steven Kirby on Jun 04, 2023 Defence Internal Audit Finding 31 May 2023 Australian Senate questioning reveal 435 Chinese-made surveillance devices found at defence sites Defence …

Incident: Toyota does U-turn, confirms thousands of Australian customers hit by latest data breach | drive.com.au

Australian Automotive Incident 01 June 2023: Toyota does U-turn, confirms thousands of Australian customers hit by latest data breach. Access key was publicly available on GitHub for almost five year.

Nivedita Newar on LinkedIn: Mandatory Cyber Incident Reporting Obligation

By Nivedita Newar on Jun 04, 2023 Awareness Refresher: If you are a cyber security team member in any role working for any of the 13 critical infrastructure sectors under the SOCI Act…

The Essential Eight Cyber Security Guidelines | Microsoft

By Microsoft on Jun 04, 2023 The Essential Eight cyber security guidelines for business Malicious cyber activity is increasing in frequency, scale, and sophistication throughout …

Artificial intelligence technologies could be classified by risk, as government consults on AI regulation

By political reporter Jake Evans on Jun 01, 2023 The federal government has outlined its intention to regulate artificial intelligence, saying there are gaps in existing law and new forms of AI …

Breaking Down the Security of Critical Infrastructure Act

By Wouter Veugelen on Jun 02, 2023, the Critical Infrastructure Risk Management Program (CIRMP) requirements came into effect. The clock is now ticking for more …

An interview with Gilbert Tobin discussing artificial intelligence in Australia

By Gilbert + Tobin on Jun 02, 2023 …will apply in respect of any personal information or sensitive information (as defined in the Privacy Act) that is ingested in or used by an AI …

Death and digital assets – Decoding digital assets in estate administration

By Ilana Kacev on Jun 02, 2023 The ever-evolving digital landscape has changed the concept of what an asset is, beyond that of mere physical possessions to now including numerous …

Regulatory focus on combatting scams and strengthening cyber resilience continues

By Kate Hilder on Jun 02, 2023 We outline the latest announcements from APRA and ASIC As previously reported, following a record year for consumer scam losses, regulators, have …

Services Australia sharing password-crackers with Dept of Education

By Jeremy Nadel on Jun 02, 2023 Services Australia has provided smartphone-hacking technology to the Department of Education and other unnamed agencies to assist them in …

Toyota does U-turn, confirms thousands of Australian customers hit by latest data breach

By Anonymous on Jun 02, 2023 A fortnight after its most recent customer data breach in Japan, Toyota Australia has confirmed the details of almost 3000 local owners were exposed …

ACT Policing admit to using Auror’s crime software without privacy assessment

By Sarah Basford Canales on Jun 02, 2023 ACT Policing has admitted to using anti-theft technology to prosecute shoplifters across Canberra despite similar software solutions being fined …

NT information commissioner seeks to distance himself from privacy breach of public health files

By Jack Hislop on Jun 02, 2023 The Northern Territory information commissioner says he offered only “brief advice” to the government regarding a privacy breach of medical records …

AIIA supportive of Government’s AI regulation discussion paper

By Gordon Peters on Jun 02, 2023 Australia’s peak body and advocacy group for the ICT industry, the Australian Information Industry Association (AIIA), has welcomed the Federal …

Toyota says some customers in Asia, Oceania face risk of data leak

By Daniel Leussink on Jun 01, 2023 Information on Toyoto customers in some countries in Oceania and Asia, excluding Japan, may have been left publicly accessible from October 2016 to …

ANZ appoints Maria Milosavljevic as next CISO

By Jeremy Nadel on Jun 01, 2023 ANZ Banking Group has appointed Maria Milosavljevic as its next CISO, replacing Lynwen Connick who is retiring in October after six-and-a-half years …

Should paying cyber ransoms be outlawed?

By Daniel Wood on May 31, 2023 Share ‘Never pay a ransom’ says the website of the federal government’s Australian Cyber Security Centre (ACSC). However, there is …

Meta and TikTok handed users’ data to Aus authorities 3654 times last year

By Jeremy Nadel on May 31, 2023 Meta and TikTok complied with 3654 of 4517 requests for user data from Australian authorities relating to 5338 accounts last year. The statistics are …