Australia: cyber-attacks targeting critical infrastructure

A quarter of cyber incidents reported to Australian security officials over the past year have targeted critical infrastructure and essential services, including health care, food distribution and energy, according to a report out today (15 Sep).

The report, by the Australian Cyber Security Centre (ACSC) warns of incidents have “underscored the vulnerability of critical infrastructure to significant disruption in essential services, lost revenue and the potential of harm or loss of life”, as well as “significant targeting, both domestically and globally, of essential services”.

The report also says that ransomware attacks disclosed to the ACSC increased 15% in the 2020-21 financial year, when compared with the previous financial year.

Such a disclosure is hardly surprising in a period which has seen major institutions, both public and private around the globe, the target of high profile ransomware attacks in recent months by sophisticated criminals.

Overall, the ACSC received more than 67,500 reports of cybercrime of all types in 2020-21, or one every eight minutes, compared with one every 10 minutes the previous year.

The report says businesses, individuals and other entities had incurred more than $33 billion in total losses from cyber-crime throughout the year.

Cybercriminals sought to exploit the pandemic by encouraging recipients to enter personal credentials to access COVID-related information or services, while unnamed foreign governments targeted the health sector seeking “access to intellectual property or sensitive information about Australia’s response to COVID”.

The ACSC responded to about 1,630 cybersecurity incidents in 2020-21, or an average of 31 cybersecurity incidents a week.

“Approximately one quarter of reported cybersecurity incidents affected critical infrastructure organisations, including essential services such as education, health, communications, electricity, water and transport,” the report says.

A breakdown of the severity of cyber incidents in 2020-21 shows there were 14 cases in which federal government entities or nationally significant infrastructure suffered the removal or damage of sensitive data or intellectual property.

This category also includes the supply chain to critical national infrastructure. Those entities also suffered a further 44 incidents in which there was an active network intrusion or temporary disruption to systems or services.

With nearly 500 ransomware cybercrime reports in the 2020-21 financial year, the ACSC says the problem has “grown in profile and impact, and poses one of the most significant threats to Australian organisations”.

“This increase has been associated with an increasing willingness of criminals to extort money from particularly vulnerable and critical elements of society.”

The report says ransom demands by cybercriminals ranged from thousands to millions of dollars, and attackers have improved their capabilities by accessing tools and services on the dark web.

Follow us on twitter: @risksEmerging

#KayBurley - Rachel Maclean told me that people just need to work more hours & then they wouldn't be poor

Liz Truss - That's a miss characterisation of what she said

KB - How is it a miss characterisation when she told me that twice?

Liz Truss - I didn't see the interview.. 🤦

A Paradigm Shift, From ‘Buying Insurance’ to ‘Selling Risk’

Keir Starmer describes working from home critic Jacob Rees-Mogg as “sticking notes on people’s desks like some overgrown prefect”.

Starmer asks Johnson whether he is in favour of a windfall tax or not

Johnson: "This government is not in principle in favour of higher taxation- they [Labour] love it, they love putting up taxes."

Worth noting that in April the government increased Nat Insurance- a tax.

Germany beer bottle shortage: Industry warns of 'tense' situation

Meet The Athletic UK’s playing wheels, a new graphic to help show if a team is playing well or not.

Devised by @johnspacemuller, no numbers to get your head round, easy to understand.

All Premier League and Championship teams in this first piece.

Load More...