A quarter of cyber incidents reported to Australian security officials over the past year have targeted critical infrastructure and essential services, including health care, food distribution and energy.
The Australian Cyber Security Centre (ACSC) disclosed the incidents in a report published yesterday, warning of “significant targeting, both domestically and globally, of essential services.”
These incidents have “underscored the vulnerability of critical infrastructure to significant disruption in essential services, lost revenue and the potential of harm or loss of life.”
Photo: Bloomberg
The report will also show ransomware attacks disclosed to the ACSC increased 15 percent in the 2020-21 financial year, when compared with the previous financial year.
The ACSC — which is part of the Australian Signals Directorate — received more than 67,500 reports of cybercrime of all types in 2020-21, or one every eight minutes.
That compared with one every 10 minutes the previous year.
Photo: AP
HUGE LOSSES
The report says businesses, individuals and other entities had incurred more than US$33 billion in total losses from cyber crime throughout the year.
Cybercriminals sought to exploit the pandemic by encouraging recipients to enter personal credentials to access COVID-related information or services, while unnamed foreign governments targeted the health sector seeking “access to intellectual property or sensitive information about Australia’s response to COVID.”
Photo: AFP
The ACSC responded to about 1,630 cybersecurity incidents in 2020-21, or an average of 31 cybersecurity incidents a week.
“Approximately one quarter of reported cybersecurity incidents affected critical infrastructure organizations, including essential services such as education, health, communications, electricity, water and transport,” the report says.
A breakdown of the severity of cyber incidents in 2020-21 shows there were 14 cases in which federal government entities or nationally significant infrastructure suffered the removal or damage of sensitive data or intellectual property.
This category also includes the supply chain to critical national infrastructure. Those entities also suffered a further 44 incidents in which there was an active network intrusion or temporary disruption to systems or services.
The report does not name most of the affected entities, although it includes several case studies, including a March 2021 ransomware attack against a Victorian public health service. That attack “affected four hospitals and aged care facilities, and resulted in the postponement of elective surgeries.”
The assistant defense minister, Andrew Hastie, who released the report, said malicious cyber criminals were “escalating their attacks on Australians”.
Hastie said the health sector reported the second highest number of ransomware incidents, “right at a time when Australians are most reliant on our health workers to help us respond and recover through the pandemic.”
He pointed to a government bill — which remains before the parliament, and has attracted concerns from industry about regulatory impact — that would impose mandatory cyber incident reporting requirements on organizations that run critical infrastructure assets.
Hastie said the legislation would “ensure that in the event of a large-scale cyber attack on our critical infrastructure, our cyber and law enforcement agencies are empowered to provide greater and more immediate support to the victims.”
In ransomware attacks, criminals typically lock up the data of a target organization and then demand payment to decrypt and unlock systems, sometimes threatening to leak stolen data if the request is rebuffed.
The ACSC report mentions the ransomware attack on the global meat and food processing company JBS Foods in May 2021, which led to the suspension of operations and standing down of workers in Australia.
The US division later confirmed that it had paid a ransom equivalent to US$11 million — reportedly in bitcoin.
With nearly 500 ransomware cybercrime reports in the 2020-21 financial year, the ACSC says the problem has “grown in profile and impact, and poses one of the most significant threats to Australian organizations.”
“This increase has been associated with an increasing willingness of criminals to extort money from particularly vulnerable and critical elements of society.”
The report says ransom demands by cybercriminals ranged from thousands to millions of dollars, and attackers have improved their capabilities by accessing tools and services on the dark web.
The report says “new and serious concerns” have joined the list of existing cyber threats, such as “the protection of Australia’s COVID-19 vaccine supply, including distribution processes, from malicious cyber actors.”
STATE-BASED ACTORS
State-based actors are believed to have an interest in learning more about Australia’s pandemic response and the views of those providing advice to government.
“State and criminal cyber actors alike possess the capability to disrupt Australia’s critical infrastructure — including vaccine supply and distribution chains — with the pandemic only amplifying the opportunities for these actors to cause Australia harm,” the report says.
“Even in the absence of direct and intentional targeting, there remains the potential for malicious cyber actors to inadvertently disrupt vaccine supply and distribution chains, making the threat more difficult to address.”
The report mentions China once — when summarizing the Australian government’s decision in July to join with the US and other international partners in accusing China’s Ministry of State Security of exploiting vulnerabilities in the Microsoft Exchange software.
That exploit is estimated to have affected thousands of computers and networks worldwide, including in Australia — but the Chinese government said they were “groundless accusations.”
Wednesday’s report also warns that business email compromise — which includes when companies are targeted with fake invoices that appear to be for genuine services — “continues to present a major threat to Australian businesses and government enterprises, especially as more Australians work remotely.”
The average loss in such incidents was more than US$50,600, which the report says is “over one-and-a-half times higher than the previous financial year.” It says cybercriminal groups have become more sophisticated and organized.
Following the shock complete failure of all the recall votes against Chinese Nationalist Party (KMT) lawmakers on July 26, pan-blue supporters and the Chinese Communist Party (CCP) were giddy with victory. A notable exception was KMT Chairman Eric Chu (朱立倫), who knew better. At a press conference on July 29, he bowed deeply in gratitude to the voters and said the recalls were “not about which party won or lost, but were a great victory for the Taiwanese voters.” The entire recall process was a disaster for both the KMT and the Democratic Progressive Party (DPP). The only bright spot for
Water management is one of the most powerful forces shaping modern Taiwan’s landscapes and politics. Many of Taiwan’s township and county boundaries are defined by watersheds. The current course of the mighty Jhuoshuei River (濁水溪) was largely established by Japanese embankment building during the 1918-1923 period. Taoyuan is dotted with ponds constructed by settlers from China during the Qing period. Countless local civic actions have been driven by opposition to water projects. Last week something like 2,600mm of rain fell on southern Taiwan in seven days, peaking at over 2,800mm in Duona (多納) in Kaohsiung’s Maolin District (茂林), according to
Aug. 11 to Aug. 17 Those who never heard of architect Hsiu Tse-lan (修澤蘭) must have seen her work — on the reverse of the NT$100 bill is the Yangmingshan Zhongshan Hall (陽明山中山樓). Then-president Chiang Kai-shek (蔣介石) reportedly hand-picked her for the job and gave her just 13 months to complete it in time for the centennial of Republic of China founder Sun Yat-sen’s birth on Nov. 12, 1966. Another landmark project is Garden City (花園新城) in New Taipei City’s Sindian District (新店) — Taiwan’s first mountainside planned community, which Hsiu initiated in 1968. She was involved in every stage, from selecting
The great number of islands that make up the Penghu archipelago make it a fascinating place to come back and explore again and again. On your next trip to Penghu, why not get off the beaten path and explore a lesser-traveled outlying island? Jibei Island (吉貝嶼) in Baisha Township (白沙鄉) is a popular destination for its long white sand beach and water activities. However, three other permanently inhabited islands in the township put a unique spin on the traditional Penghu charm, making them great destinations for the curious tourist: Yuanbeiyu (員貝嶼), Niaoyu (鳥嶼) and Dacangyu (大倉嶼). YUANBEIYU Citou Wharf (岐頭碼頭) connects the mainland
RSS