National Cyber Security Coordinator’s Post

View organization page for National Cyber Security Coordinator, graphic

22,670 followers

3mo

Yesterday afternoon I was advised by a commercial health information organisation that it was the victim of a large-scale ransomware data breach incident. I am working with agencies across the Australian Government, states and territories to coordinate a whole-of-government response to this incident. The Australian Signals Directorate Australian Cyber Security Centre is aware of the incident and the Australian Federal Police is investigating. We are in the very preliminary stages of our response and there is limited detail to share at this stage, but I will continue to provide updates as we progress while working closely with the affected commercial organisation to address the impacts caused by the incident.

46 Comments

Nigel Bourn

Principal Consultant at Iocane

3mo

What is the point of this "update" when there is no information of any value to be shared? Just sharing the industry vertical means you have already let the malicious actors know you are looking into their activities. What advantage is there to be gained by not disclosing the provider apart from protecting the brand of the org involved? Provide usable information, or stay quiet until you can. This post will just fuel conjecture for the next news cycle and helps nobody, let alone the citizens who will be left (again) to clean up another corporate mess where controls are clearly absent.

15 Reactions

Peter Bridgeman

Senior Systems Engineer | Azure | HM Armed Forces Veteran | Submariner

3mo

And yet the government still believes Digital ID is the way forward for Australia, what happens when those systems are breached and citizens data is stolen?

11 Reactions

Michael Plis

3mo

MediSecure is the organisation affected for transparencys sake. To check if you used it try searching in your mailbox for: medisecure They use to dispense digital scripts for GP. MediSecure statement: Cyber security incident/data breach MediSecure has identified a cyber security incident impacting the personal and health information of individuals. We have taken immediate steps to mitigate any potential impact on our systems. While we continue to gather more information, early indicators suggest the incident originated from one of our third-party vendors. MediSecure takes its legal and ethical obligations seriously and appreciate this information will be of concern. MediSecure is actively assisting the Australian Digital Health Agency and the National Cyber Security Coordinator to manage the impacts of the incident. MediSecure has also notified the Office of the Australian Information Commissioner and other key regulators. MediSecure understands the importance of transparency and will provide further updates via our website as soon as more information becomes available. We appreciate your patience and understanding during this time. 16 May 2024 https://www.medisecure.com.au/

11 Reactions

Bruno Soares Correa

Tech Troubleshooter, Network & Sys Admin who also loves Cybersec: Keeping Systems Safe, One Byte at a Time!

3mo

Can you please take a look at the SSL issue with bom.gov.au website? It's been months already.

2 Reactions

Darkrai W.

Cyber Advocate

3mo

Can we know which healthcare provider

1 Reaction

David Gizowski

Security Architect - CISSP, CCSP, AWS-GCP

3mo

You would have to assume the data was exfiltrated as collateral if the ransom is not paid. What are the odds of "we promise to delete the data we stole if you pay"? As best practice, security controls should be designed to protect the data if even compromised, backups held in another cloud, and so on... SaaS providers may or may not encrypt your data with a CMEK of your choosing, is your data in a shared instance vs a dedicated instance? With a bit of effort and upfront design, modern cloud platforms make this possible. Cost more?... sure. Cost of a breach?... what is your company worth. I believe it goes a bit deeper that spending a few million more on security (of course I would be happen to earn some of that) - it's an attitude from the top down, bottom up and side to side. Asking questions like who is the new person in the office, who is this "unverified user" in my teams meeting lobby become the norm. That one question could be difference.

1 Reaction

Jason W.

Technology, Telecommunications, Accommodation, Mentoring.

3mo

It's very disappointing to hear time and time again of large business who are not investing enough into Cyber Secuity.

3 Reactions

Cyber Shield Advisors

3mo

The value of a cyber risk assessment can never be overstated: it is critical to know your gaps and protect your business assets, before the breach, and to have that incident response plan in place. Very sad to hear of another ransomware victim. #cybershields #stopransomware

2 Reactions

Carole Champion

Business Development Manager | Cyber Security Advisor, Presenter and Founder of Human Element IT

3mo

The only suitable emoji to choose here is ‘care’ Protect the individuals affected and the organisation that is now unravelling what happened and how.

1 Reaction

Joanne Cooper

CEO - Founder World Data Exchange & ID Exchange | Digi.me App | OWI Top 100 Digital ID Influencer l Emerging secure Patient Centric data sharing platform | Data Intermediary | Disruptor - Global

3mo

Another day, another breach. Time to move to privacy and security by design models.

2 Reactions

See more comments

To view or add a comment, sign in

More Relevant Posts

Kristof Kazmer

Helping you understand and use technology efficiently | Problem Solver | Technology Strategist | Cybersecurity | Managed Services | Data and Analytics
3mo
Report this post
🚨Brace yourselves, another well know health entity breach will be announced in the coming days. With it will come a number of notifications and actions for customers. 𝗧𝗢𝗣 𝗧𝗜𝗣: If you reuse the same password on your accounts, please change your banking and email passwords NOW. #thinkbeforeyouclick #shifthappens
National Cyber Security Coordinator

22,670 followers
3mo

Yesterday afternoon I was advised by a commercial health information organisation that it was the victim of a large-scale ransomware data breach incident. I am working with agencies across the Australian Government, states and territories to coordinate a whole-of-government response to this incident. The Australian Signals Directorate Australian Cyber Security Centre is aware of the incident and the Australian Federal Police is investigating. We are in the very preliminary stages of our response and there is limited detail to share at this stage, but I will continue to provide updates as we progress while working closely with the affected commercial organisation to address the impacts caused by the incident.
Like Comment
To view or add a comment, sign in
John G. Dryden MCybSec

Chief Information Security Officer - Five Eyes Cyber | AI | GenAI | ML | Digital Transformation | Training | CIA
3mo
Report this post
Be vigilant and remain aware. Troubling times with ransomware growing on a daily basis. More the reason to have the correct infrastructure, architecture and monitoring services established for your business.
National Cyber Security Coordinator

22,670 followers
3mo

Yesterday afternoon I was advised by a commercial health information organisation that it was the victim of a large-scale ransomware data breach incident. I am working with agencies across the Australian Government, states and territories to coordinate a whole-of-government response to this incident. The Australian Signals Directorate Australian Cyber Security Centre is aware of the incident and the Australian Federal Police is investigating. We are in the very preliminary stages of our response and there is limited detail to share at this stage, but I will continue to provide updates as we progress while working closely with the affected commercial organisation to address the impacts caused by the incident.
Like Comment
To view or add a comment, sign in
Information Architect

28 followers
3mo Edited
Report this post
Importance of cybersecurity in today's digital landscape. This recent cyber incident serves as a stark reminder of the ever-present threats facing businesses of all sizes. At Information Architect, we are committed to safeguarding our clients' cloud environments against such threats through proactive monitoring, robust security measures, and round-the-clock support. Stay informed and protected with our comprehensive cybersecurity solutions. #Cybersecurity #CloudSecurity #ManagedServices
National Cyber Security Coordinator

22,670 followers
3mo

Yesterday afternoon I was advised by a commercial health information organisation that it was the victim of a large-scale ransomware data breach incident. I am working with agencies across the Australian Government, states and territories to coordinate a whole-of-government response to this incident. The Australian Signals Directorate Australian Cyber Security Centre is aware of the incident and the Australian Federal Police is investigating. We are in the very preliminary stages of our response and there is limited detail to share at this stage, but I will continue to provide updates as we progress while working closely with the affected commercial organisation to address the impacts caused by the incident.
Like Comment
To view or add a comment, sign in
Nigel Bourn

Principal Consultant at Iocane
3mo
Report this post
What is the point of this "update" when there is no information of any value to be shared? Just sharing the industry vertical means you have already let the malicious actors know you are looking into their activities. What advantage is there to be gained by not disclosing the provider apart from protecting the brand of the org involved? Provide usable information, or stay quiet until you can. This post will just fuel conjecture for the next news cycle and helps nobody, let alone the citizens who will be left (again) to clean up another corporate mess where controls are clearly absent.
National Cyber Security Coordinator

22,670 followers
3mo

Yesterday afternoon I was advised by a commercial health information organisation that it was the victim of a large-scale ransomware data breach incident. I am working with agencies across the Australian Government, states and territories to coordinate a whole-of-government response to this incident. The Australian Signals Directorate Australian Cyber Security Centre is aware of the incident and the Australian Federal Police is investigating. We are in the very preliminary stages of our response and there is limited detail to share at this stage, but I will continue to provide updates as we progress while working closely with the affected commercial organisation to address the impacts caused by the incident.
2 Comments
Like Comment
To view or add a comment, sign in
Cyber Resilience Group

328 followers
3mo
Report this post
At these early stages of a large breach, the community's desire to be informed is key. This is a great example of how any organisation should communicate to its stakeholders. Are you prepared for a breach? Cyber Resilience Group is a group of experts that can assist you with appropriate planning and preparation for a data breach. #databreach #areyouprepared
National Cyber Security Coordinator

22,670 followers
3mo

Yesterday afternoon I was advised by a commercial health information organisation that it was the victim of a large-scale ransomware data breach incident. I am working with agencies across the Australian Government, states and territories to coordinate a whole-of-government response to this incident. The Australian Signals Directorate Australian Cyber Security Centre is aware of the incident and the Australian Federal Police is investigating. We are in the very preliminary stages of our response and there is limited detail to share at this stage, but I will continue to provide updates as we progress while working closely with the affected commercial organisation to address the impacts caused by the incident.
Like Comment
To view or add a comment, sign in
David New

Executive at Dyadic Consultancy
3mo
Report this post
Security is everyone's business! Easy to agree to, but what are you doing about it? What business would look like they're more serious about security in a tender process, one whom only just achieved certification for the tender, or one who implemented it earlier to be proactive not reactive? #iso9001 #iso14001 #iso22301 #iso27001 #iso45001 #qualityassurance #customerfocus #businessplanning #businesscontinuity #defenceindustry #sovereigncapability #cybersecurity #networking #AS9100D #aerospaceindustry #departmentofdefence
National Cyber Security Coordinator

22,670 followers
3mo

Yesterday afternoon I was advised by a commercial health information organisation that it was the victim of a large-scale ransomware data breach incident. I am working with agencies across the Australian Government, states and territories to coordinate a whole-of-government response to this incident. The Australian Signals Directorate Australian Cyber Security Centre is aware of the incident and the Australian Federal Police is investigating. We are in the very preliminary stages of our response and there is limited detail to share at this stage, but I will continue to provide updates as we progress while working closely with the affected commercial organisation to address the impacts caused by the incident.
Like Comment
To view or add a comment, sign in
EMC & Associates - We make every single Business more profitable

23 followers
3w Edited
Report this post
IT OUTAGE: WARNINGS MOUNT THAT CRIMINALS SEEKING TO EXPLOIT CHAOS NEXT WEEK Cyber-security experts are warning of a second wave of disruption and harm that has started to come from cyber criminals hoping to capitalise on the chaos. This morning Australian Signals Directorate (ASD), the equivalent of the UK's GCHQ or the US National Security Agency (NSA), issued an alert about hackers sending out bogus software fixes claiming to be CrowdStrike. "Alert! We understand a number of malicious websites and unofficial code are being released claiming to help entities recover" the notice reads. The agency is urging IT responders to only use CrowdStrike's website to source information and help. The ASD warning follows calls from the UK's National Cyber Security Centre (NCSC) yesterday for people to be hyper vigilant of suspicious emails or calls that pretend to be CrowdStrike or Microsoft help. "An increase in phishing referencing this outage has already been observed, as opportunistic malicious actors seek to take advantage of the situation," the agency said. #kentbusiness #smes #kentinvictachamber #smallbusinessowners #itsecurity #smallbusinessbritain #chamberofcommerce #westkent #paulbrooks #chamberconnections #martinwhite #fsb
Like Comment
To view or add a comment, sign in
Cyber Train Australia Pty Ltd

3,717 followers
9mo
Report this post
We need to have a serious discussion around Cyber Resilience as cyber criminals continue to attack critical Australian infrastructure. #cyberincident #incudenthandling #ddos #cyberattack #ransomware #businesscontinuity #disasterrecoveryplan #businesscontinuity #netwrokdefense https://lnkd.in/gNnjPZyP

39K views · 479 reactions | A crippling cyber-attack shuts down Australia’s biggest ports | Four major Australian ports have come to a standstill after a cyber security attack struck the nation's biggest ports operator. There's fears it could... | By 7NEWS Melbourne | Facebook

facebook.com
Like Comment
To view or add a comment, sign in
John Mather

Small Business Consultant, making every business more Productive, Profitable & Valuable. Making your business much more Profitable sorts out lots of problems.
3w Edited
Report this post
IT OUTAGE: WARNINGS MOUNT THAT CRIMINALS ARE SEEKING TO EXPLOIT CHAOS Cyber-security experts are warning of a second wave of disruption and harm that has started to come from cyber criminals hoping to capitalise on the chaos. This morning Australian Signals Directorate (ASD), the equivalent of the UK's GCHQ or the US National Security Agency (NSA), issued an alert about hackers sending out bogus software fixes claiming to be CrowdStrike. "Alert! We understand a number of malicious websites and unofficial code are being released claiming to help entities recover" the notice reads. The agency is urging IT responders to only use CrowdStrike's website to source information and help. The ASD warning follows calls from the UK's National Cyber Security Centre (NCSC) yesterday for people to be hyper vigilant of suspicious emails or calls that pretend to be CrowdStrike or Microsoft help. "An increase in phishing referencing this outage has already been observed, as opportunistic malicious actors seek to take advantage of the situation," the agency said. #kentbusiness #smes #kentinvictachamber #smallbusinessowners #itsecurity #smallbusinessbritain #chamberofcommerce #westkent #paulbrooks #tudorprice #martinwhite #fsb

EMC & Associates - We make every single Business more profitable

23 followers
3w Edited

IT OUTAGE: WARNINGS MOUNT THAT CRIMINALS SEEKING TO EXPLOIT CHAOS NEXT WEEK Cyber-security experts are warning of a second wave of disruption and harm that has started to come from cyber criminals hoping to capitalise on the chaos. This morning Australian Signals Directorate (ASD), the equivalent of the UK's GCHQ or the US National Security Agency (NSA), issued an alert about hackers sending out bogus software fixes claiming to be CrowdStrike. "Alert! We understand a number of malicious websites and unofficial code are being released claiming to help entities recover" the notice reads. The agency is urging IT responders to only use CrowdStrike's website to source information and help. The ASD warning follows calls from the UK's National Cyber Security Centre (NCSC) yesterday for people to be hyper vigilant of suspicious emails or calls that pretend to be CrowdStrike or Microsoft help. "An increase in phishing referencing this outage has already been observed, as opportunistic malicious actors seek to take advantage of the situation," the agency said. #kentbusiness #smes #kentinvictachamber #smallbusinessowners #itsecurity #smallbusinessbritain #chamberofcommerce #westkent #paulbrooks #chamberconnections #martinwhite #fsb
Like Comment
To view or add a comment, sign in
Chris Stannage

Regional Sales Manager @ Illumio | Victoria, Tasmania & New Zealand
9mo Edited
Report this post
Sadly, some of these statistics come as no surprise given the current threat landscape: - Average cost of cybercrime to Australian businesses increased by 14% - Email risk/Business Email Compromise still the leading attack vector - Most vulnerabilities are exploited within 48 hours Its worthwhile staying across the latest trends to ensure you're taking proactive steps in protecting your organisation. ASD Cyber Threat Report 2023 below: https://lnkd.in/gKYtE-Hx #Cyberrisk #Darktrace #EmailSecurity

Foreign countries behind massive cybercrime surge

9news.com.au
Like Comment
To view or add a comment, sign in

22,670 followers

View Profile Follow

National Cyber Security Coordinator’s Post

More Relevant Posts

Explore topics