As Australia reels from another “immensely harmful” data hack, the Australian Bureau of Statistics (ABS) has revealed it has fended off close to 1 billion cyberattacks against the census.
Australian statistician David Gruen told the Melbourne Business Analytics Conference last week that after the 2016 distributed denial-of-service attacks, which led to the first digital census being taken offline by the ABS for 40 hours, every effort was made to protect the census and its data.
“In the event, everything ran smoothly even though there were slightly less than one billion cyberattacks on our census digital system on census day, August 10, 2021,” he said. “Billion is not a misprint.”
Photo: Reuters
A spokesperson for the ABS said the census systems were open from July 28 to Oct. 1 last year, and during that time the public-facing systems were under constant attack.
“While it is hard to quantify what an attack is, in our case these were connections that were obviously malicious which we blocked, either automatically or manually,” they said.
“On census day alone we blocked 308,735 malicious connections, and on investigating these we blocked 130,000 IP addresses which were the source of this attack traffic,” they said.
Responding to the latest Australian ransomware attack, which has left Medibank customers worried about their health information being made public, Australian Minister for Cybersecurity Clare O’Neil said cyberattacks were a part of “this new world.”
“There is an element here that cybercrime is growing really quickly around the world. There was an Interpol conference yesterday where the kind of police heads of forces from around the world got together and their message to the community was that cybercrime is now their main crime concern internationally,” she said, adding that “this is the new world that we live in. We are going to be under relentless cyberattack, essentially from hereon in.”
Medibank is the second major data hack in less than a month after telecommunications company Optus’ systems were breached last month.
One in two Australians responding to an Essential poll earlier this month said they wanted stronger privacy laws in light of the Optus hack. O’Neil has signaled that the Australian government is working on new legislation.
“I think [Medibank] combined with Optus, this is a huge wake up call for the country,” she said, adding that “it certainly gives the government a really clear mandate to do some things that frankly, probably should have been done five years ago, but I think are still very crucially important.”
O’Neil said she was particularly concerned due to the sensitive nature of the information held by Medibank.
“A lot of cybercrime relates to financial or identity information, which is very problematic when it comes into the public realm — what we have here is information that’s held by this organization, which is healthcare information, and that just on its own being made public can cause immense harm to Australians,” she said.
The ABS instigated its census security strategy in 2018, but said it was an ongoing project. Ahead of the census, it prepared with denial-of-service attack testing, operational simulations and penetration testing from private and public organizations to ensure the system was match-fit.
The ABS said it would continue to prepare for malicious cyberattacks and has taken additional steps to protect the data it holds, which includes testing its systems with information security registered assessors accredited by the Australian Cyber Security Center.
“After data collection and processing, names and addresses are removed from other personal and household information,” an ABS spokesperson said. “Names and addresses are separated from other census data to protect privacy. We store names and addresses securely and separately from one another.”
“For the 2021 census, the ABS will delete all names within 18 months of the census and addresses within three years. All paper forms from the 2021 census have been destroyed,” ABS said.
‘TERRORIST ATTACK’: The convoy of Brigadier General Hamdi Shukri resulted in the ‘martyrdom of five of our armed forces,’ the Presidential Leadership Council said A blast targeting the convoy of a Saudi Arabian-backed armed group killed five in Yemen’s southern city of Aden and injured the commander of the government-allied unit, officials said on Wednesday. “The treacherous terrorist attack targeting the convoy of Brigadier General Hamdi Shukri, commander of the Second Giants Brigade, resulted in the martyrdom of five of our armed forces heroes and the injury of three others,” Yemen’s Saudi Arabia-backed Presidential Leadership Council said in a statement published by Yemeni news agency Saba. A security source told reporters that a car bomb on the side of the road in the Ja’awla area in
‘SHOCK TACTIC’: The dismissal of Yang mirrors past cases such as Jang Song-thaek, Kim’s uncle, who was executed after being accused of plotting to overthrow his nephew North Korean leader Kim Jong-un has fired his vice premier, compared him to a goat and railed against “incompetent” officials, state media reported yesterday, in a rare and very public broadside against apparatchiks at the opening of a critical factory. Vice Premier Yang Sung-ho was sacked “on the spot,” the state-run Korean Central News Agency said, in a speech in which Kim attacked “irresponsible, rude and incompetent leading officials.” “Please, comrade vice premier, resign by yourself when you can do it on your own before it is too late,” Kim reportedly said. “He is ineligible for an important duty. Put simply, it was
SCAM CLAMPDOWN: About 130 South Korean scam suspects have been sent home since October last year, and 60 more are still waiting for repatriation Dozens of South Koreans allegedly involved in online scams in Cambodia were yesterday returned to South Korea to face investigations in what was the largest group repatriation of Korean criminal suspects from abroad. The 73 South Korean suspects allegedly scammed fellow Koreans out of 48.6 billion won (US$33 million), South Korea said. Upon arrival in South Korea’s Incheon International Airport aboard a chartered plane, the suspects — 65 men and eight women — were sent to police stations. Local TV footage showed the suspects, in handcuffs and wearing masks, being escorted by police officers and boarding buses. They were among about 260 South
Syrian President Ahmed al-Sharaa on Sunday announced a deal with the chief of Kurdish-led forces that includes a ceasefire, after government troops advanced across Kurdish-held areas of the country’s north and east. Syrian Kurdish leader Mazloum Abdi said he had agreed to the deal to avoid a broader war. He made the decision after deadly clashes in the Syrian city of Raqa on Sunday between Kurdish-led forces and local fighters loyal to Damascus, and fighting this month between the Kurds and government forces. The agreement would also see the Kurdish administration and forces integrate into the state after months of stalled negotiations on
RSS