Author - Jacqueline Patishman

1
Uber found to have breached Australian’s privacy following 2016 hack
2
To pay or not to pay the ransom? Organisations may find their decision easier with government guidance
3
Would mandatory reporting of ransomware payments cause more good or trouble?
4
New Cyber Security Evaluation Tool released by US Homeland Security for organisations to self-test their security systems
5
New US / Aus cross-border data access regime
6
REvil strikes again – ransomware attack on UnitingCare Queensland
7
Is ABC’s mandatory login into ABC iview legal?
8
Essential Eight cyber security controls to be mandated for almost all federal departments and agencies
9
Victorian Government QR Code Service now compulsory for all workplaces and businesses
10
The AFP and FBI developed ANoM app secretly distributed among criminals used to make over 800 criminal arrests worldwide

Uber found to have breached Australian’s privacy following 2016 hack

By Cameron Abbott and Jacqueline Patishman

In 2017, Uber disclosed to the Office of the Australian Information Commissioner (OAIC) a breach of its some 57 million global users and driver’s personal information (including approximately 1.2 million Australians). Last Friday, the OAIC determined that Uber had breached the Australian Privacy Act by failing to take reasonable steps to protect Australian’s personal information from unauthorised access.

Read More

To pay or not to pay the ransom? Organisations may find their decision easier with government guidance

By Cameron AbbottRob Pulham and Jacqueline Patishman

The Cyber Security Advisory Committee (an industry based advisory panel established by the Minister for Home Affairs to provide independent strategic advice on Australia’s cyber security challenges) has recommended in its annual report that the federal government develop a clearer policy position on the payment of ransoms by organisations that have suffered ransomware attacks.

Read More

Would mandatory reporting of ransomware payments cause more good or trouble?

By Cameron AbbottWarwick Andersen and Jacqueline Patishman

Last month, the federal opposition (Shadow Assistant Minister for Cyber Security) introduced the private member’s Ransomware Payments Bill (the Bill) that proposes to make it mandatory for all Australian businesses and government agencies to notify the Australian Cyber Security Centre (ACSC) before paying a ransom to a ransomware attacker. Failure to notify will attract a penalty of 1,000 penalty units ($181,740).

Read More

New Cyber Security Evaluation Tool released by US Homeland Security for organisations to self-test their security systems

By Cameron AbbottWarwick Andersen and Jacqueline Patishman

The United States Department of Homeland Security has developed the Cyber Security Evaluation Tool (CSET) which provides a systematic (and repeatable) process that critical infrastructure asset owners can use to assess and improve their cyber security management systems. This tool has a particular focus on the security of industrial control systems and information networks.

Read More

New US / Aus cross-border data access regime

By Cameron AbbottWarwick Andersen and Jacqueline Patishman

The Telecommunications Legislations Amendment (International Orders) Bill 2020 has just cleared both houses of parliament. The new bill establishes a reciprocal cross-border data access regime between the United States and Australia which will allow for cross-border communications between foreign governments for national security and law enforcement purposes.

Read More

REvil strikes again – ransomware attack on UnitingCare Queensland

By Cameron Abbott and Jacqueline Patishman

Following a ransomware infection in late April, UnitingCare Queensland has suffered a nearly 2 month long ordeal to regain control of its systems. UnitingCare was a victim of malware called Sodinokibi/REvil which encrypted its files and attempted to delete backups.

Read More

Is ABC’s mandatory login into ABC iview legal?

By Cameron AbbottWarwick Andersen and Jacqueline Patishman

From July 1 all users of ABC’s on demand platform iview will be required to log in (and to have an account) to use the platform. It’s been reported that the former federal Privacy Commissioner, Malcolm Crompton, has been pushing to reverse the ABC’s decision, arguing that because the ABC is publically funded, Australians shouldn’t have to pay for content (which we have already paid for) with our data. 

Read More

Essential Eight cyber security controls to be mandated for almost all federal departments and agencies

By Cameron AbbottWarwick Andersen, Rob Pulham and Jacqueline Patishman

It’s been reported that the Federal Government is planning on making implementation of the Essential Eight cyber security controls for all Commonwealth entities (excluding corporate Commonwealth entities). The Essential Eight is a baseline set of security strategies designed to minimise the risk of security incidents.  At this stage, no guidance has been provided as to the timeline for when this might happen; however, a decision as to the preferred approach is planned to be made by the end of the year.

Read More

Victorian Government QR Code Service now compulsory for all workplaces and businesses

By Cameron AbbottRob Pulham and Jacqueline Patishman

All Victorian workplaces businesses and venue operators must now use the free Victorian Government QR Code Service (or use a third-party system that links back to the government’s interface) to meet their contact tracing obligations.

Read More

The AFP and FBI developed ANoM app secretly distributed among criminals used to make over 800 criminal arrests worldwide

By Cameron AbbottWarwick Andersen and Jacqueline Patishman

[Editor: It has been a busy week for all Cyberwatchers, and our blog has been running hot.  This however is our favourite.]

For at least the last three years the Australian Federal Police and the United Stated Federal Bureau of Investigation have been working together to run ‘Operation Ironside’ using an app called ANoM. The app has allowed law enforcement to easily monitor criminal communications and to make over 800 criminal arrests so far.

Read More

Copyright © 2019, K&L Gates LLP. All Rights Reserved.