AuBook.com.au

SMH - Technology

‘Australia is not a soft target’: Cyber ransom payments in firing line

Posted: 2023-02-27 07:40:43

Original link: https://www.smh.com.au/technology/australia-is-not-a-soft-target-cyber-ransom-payments-in-firing-line-20230227-p5cnxr.html?ref=rss&utm_medium=rss&utm_source=rss_technology

The cycle of companies paying ransoms after being hit by a cyberattack and in turn encouraging more hacking attempts, such as the one that stung health insurer Medibank last year, could be broken by a proposal canvassed in a government review to ban the practice.

A review of Australia’s cybersecurity strategy led by former Telstra boss Andy Penn and delivered on Monday asked for feedback on the idea of banning the payment of ransoms to cyber criminals, which the federal government is considering after an industry roundtable.

Cybersecurity Minister Clare O’Neil says that where possible companies should not reward hackers with ransoms. Credit:Alex Ellinghausen

“When we have an ecosystem where people are constantly paying ransoms then it makes it look like Australia is a soft target, and we are not a soft target,” said Home Affairs Minister Clare O’Neil. “There are many Australian companies that do not pay ransoms and certainly the advice with the Australian government is we would ask you not to do that.”

But paying ransoms is not illegal and a survey conducted by pollster YouGov for the advisory firm McGrathNicol, which is often brought in to deal with cyberattacks, found last year that about 80 per cent of Australian businesses hit by a cyberattack pay a ransom averaging $1 million. In that scenario, the criminals render a company’s network inoperable or steal information and say they will undo the damage only if a payment is made, typically in cryptocurrencies that are hard to trace.

Rachael Falk, chief executive of the Cyber Security Cooperative Research Centre.Credit:

Medibank refused to pay the hackers’ ransom last year and the criminal group made good on its threat of releasing the sensitive data of the insurer’s customers.

O’Neil said the government was open to a range of changes, from banning ransoms altogether to banning most but having limited exceptions or compulsory reporting of payments. “These are all on the table at the moment,” O’Neil said. “What I do know is that we can’t continue as we are today.”

Penn, who led Australia’s largest telecommunications company Telstra until August last year, said companies should only contemplate a ransom in the most extreme circumstances.

“It’s a complex area,” Penn said. “I certainly would be an advocate for saying we should avoid paying ransoms, and we certainly wouldn’t recommend paying ransoms. There are potentially limited circumstances where there are life-threatening situations where maybe a complete ban is not appropriate.”

0 Comment(s)
Favorite Unfavorite

Read On:

Is Trump’s ‘made in America’ iPhone a fantasy? - 2025-05-25 05:41:18

Buying an EV in Australia may be easy but getting one fixed isn’t that simple - 2025-05-24 14:05:00

Six exciting advancements coming to a smart home near you - 2025-05-21 23:42:06

Google’s new features in Search, Meet and more escalate the AI war - 2025-05-21 04:29:31

It’s a $US450 billion industry, and Australia is in prime position to become a player - 2025-05-19 19:00:00

Are you ready to be insulted by a search engine? - 2023-02-25 00:30:00

Twitter is demanding payment for security. What should users do? - 2023-02-24 04:30:00

Elon Musk to open up Twitter’s algorithm to public - 2023-02-22 18:47:27

Australia’s largest crypto gaming start-up is cutting staff - 2023-02-21 22:58:02

Union push to tear up Apple pay deal it claims sent workers backwards - 2023-02-19 05:30:00

Report this news