CYBER SECURITY MONTHLY ROUNDUP – SEPTEMBER 2024
September 2024 continued the disturbing trend of escalating cyber threats, with new and sophisticated attacks emerging at an alarming rate. Ransomware remained a persistent menace, targeting small and medium-sized businesses with the healthcare sector remaining the prime target. Data breaches continued to expose sensitive information, while supply chain attacks demonstrated the interconnectedness of modern systems. The growing use of AI and machine learning in cyber security offered opportunities and challenges. Governments worldwide responded with new legislation and increased international cooperation, recognising the urgent need to address the evolving cyber threat landscape.
Data Breaches
304k customer records allegedly stolen from Australian camera and electronics store DigiDirect according to threat actor Tanka the data containing names, emails, addresses, phone numbers and billing information has been exfiltrated and listed for sale with a sample of the data. The now-deleted post was reported to be published many times on several forums. Source: cyberdaily.au
Ransomware Attack
An affiliate of the RansomHub ransomware gang has published six gigabytes of data from Melbourne-based interior solutions supplier Nikpol. RansomHub first listed Nikpol on its darknet leak site on 18 September in a post that listed only a brief description of the company and nothing else. The compromised data includes internal documents and data such as Nikpol’s annual financial budgets, details of the company’s bank accounts and statements, and several tax residency declarations. Details of company credit cards are included, as are contracts with several other Australian organisations, including a Melbourne-based immigration law firm. Source cyberdaily.au/security
Rising Demand for Security Talent
Australia faces a critical shortage of cybersecurity professionals, exacerbated by increasing cyber threats and regulatory requirements. Many SMEs are struggling to find the right talent to manage their cybersecurity needs, making the role of outsourcing and third-party cybersecurity services more important. Upskilling existing IT staff and leveraging managed services can help bridge the gap, ensuring organisations maintain strong defences against evolving threats. www.acs.org.au
Regulatory Compliance and Data Breach Penalties
September also saw the Australian government push forward on strengthening penalties for companies that fail to adequately protect customer data. Following high-profile breaches in teleco, banking and healthcare sectors, regulators are pushing for more stringent reporting requirements and heavier fines for non-compliance. Dramatic figures released by the Office of the Australian Information Commissioner (OAIC) have prompted AUCyber CEO Peter Maloney to call upon healthcare providers and the government to do more to protect sensitive patient data. https://www.cyberdaily.au/security
November 2024 Cybersecurity Roundup: Protecting Your Australian SME
CYBERSECURITY NEWS ROUNDUP: NOVEMBER 2024 This month’s news highlights the ongoing challenges and emerging threats facing Australian SMEs. Let’s dive into the key points: Top Headlines: • Cyber Security Bill […]
Read MoreA Year in Review: Gratitude, Growth, and Exciting Plans for 2025
A Year in Review and Exciting Plans for 2025 As 2024 draws to a close, we want to take a moment to express our sincere gratitude for your continued support. […]
Read MoreCyber Security Tips for a Safe Holiday Shutdown
Cyber Security Tips for a Safe and Secure Christmas Shutdown As the festive season approaches, it’s important to ensure your business is adequately protected from cyber threats, even during the […]
Read MoreCybersecurity 2025: A Look Ahead
2025 Cybersecurity Predictions: Navigating the Evolving Threat Landscape As we step into 2025, the cybersecurity landscape continues to evolve, presenting new challenges for organisations worldwide. With the increasing sophistication of […]
Read More