FINAL Newsletter Web Banner (2)

CYBER SECURITY MONTHLY ROUNDUP – OCTOBER 2024

October 2024 continued the disturbing trend of escalating cyber threats, with new and sophisticated attacks emerging at an alarming rate. Ransomware remained a persistent menace, targeting small and medium-sized businesses with the healthcare sector remaining the prime target. Data breaches continued to expose sensitive information, while supply chain attacks demonstrated the interconnectedness of modern systems. The growing use of AI and machine learning in cyber security offered opportunities and challenges. Governments worldwide responded with new legislation and increased international cooperation, recognising the urgent need to address the evolving cyber threat landscape.

Data Breaches

Tens of thousands of patient records were exposed in a breach at fresh produce company Perfection Fresh. The compromised data included personal information such as names, addresses, and medical histories1. The breach has raised significant concerns about the security of personal data in the healthcare supply chain.

Ransomware Attack

An affiliate of the RansomHub ransomware gang published six gigabytes of data from aged care organisations Respect and TPG Aged Care. The compromised data includes internal documents, financial budgets, bank account details, and contracts with several other Australian organisations. This attack highlights the growing threat of ransomware to critical infrastructure sectors.

Regulatory Compliance and Data Breach Penalties

October saw the Australian government push forward on strengthening penalties for companies that fail to adequately protect customer data. Following high-profile breaches in teleco, banking, and healthcare sectors, regulators are pushing for more stringent reporting requirements and heavier fines for non-compliance. Dramatic figures released by the Office of the Australian Information Commissioner (OAIC) have prompted AUCyber CEO Peter Maloney to call upon healthcare providers and the government to do more to protect sensitive patient data.

Legislative Changes

The Australian government introduced the Cyber Security Legislative Package, which sets in motion key reforms contemplated by the 2023 – 2030 Australian Cyber Security Strategy. The package includes the introduction of the Intelligence Services and Other Legislation Amendment (Cyber Security) Bill 2024, which amends the Intelligence Services Act 2001 to legislate a limited-use obligation for the Australian Signals Directorate (ASD). This legislative change aims to enhance the country's cyber security framework and protect critical infrastructure.

Source herbertsmithfreehills.com, kineticit.com.au, cyber.gov.au

November 2024 Cybersecurity Roundup: Protecting Your Australian SME

CYBERSECURITY NEWS ROUNDUP: NOVEMBER 2024 This month’s news highlights the ongoing challenges and emerging threats facing Australian SMEs. Let’s dive into the key points: Top Headlines: • Cyber Security Bill […]

Read More

A Year in Review: Gratitude, Growth, and Exciting Plans for 2025

A Year in Review and Exciting Plans for 2025 As 2024 draws to a close, we want to take a moment to express our sincere gratitude for your continued support. […]

Read More

Cyber Security Tips for a Safe Holiday Shutdown

Cyber Security Tips for a Safe and Secure Christmas Shutdown As the festive season approaches, it’s important to ensure your business is adequately protected from cyber threats, even during the […]

Read More

Cybersecurity 2025: A Look Ahead

2025 Cybersecurity Predictions: Navigating the Evolving Threat Landscape As we step into 2025, the cybersecurity landscape continues to evolve, presenting new challenges for organisations worldwide. With the increasing sophistication of […]

Read More