Category: New Developments

1
To pay or not to pay the ransom? Organisations may find their decision easier with government guidance
2
Would mandatory reporting of ransomware payments cause more good or trouble?
3
New Cyber Security Evaluation Tool released by US Homeland Security for organisations to self-test their security systems
4
New US / Aus cross-border data access regime
5
Is ABC’s mandatory login into ABC iview legal?
6
Victorian Government QR Code Service now compulsory for all workplaces and businesses
7
Australia’s international cyber strategy pivots towards critical technology in neighboring countries
8
Even the Best Fall Down Sometimes: Nine Network suffers large-scale cyber attack
9
No News is Bad News! Big digital platforms flex their influence to no avail.
10
Less than two weeks to go: New Zealand Privacy Act commences 1 December 2020

To pay or not to pay the ransom? Organisations may find their decision easier with government guidance

By Cameron AbbottRob Pulham and Jacqueline Patishman

The Cyber Security Advisory Committee (an industry based advisory panel established by the Minister for Home Affairs to provide independent strategic advice on Australia’s cyber security challenges) has recommended in its annual report that the federal government develop a clearer policy position on the payment of ransoms by organisations that have suffered ransomware attacks.

Read More

Would mandatory reporting of ransomware payments cause more good or trouble?

By Cameron AbbottWarwick Andersen and Jacqueline Patishman

Last month, the federal opposition (Shadow Assistant Minister for Cyber Security) introduced the private member’s Ransomware Payments Bill (the Bill) that proposes to make it mandatory for all Australian businesses and government agencies to notify the Australian Cyber Security Centre (ACSC) before paying a ransom to a ransomware attacker. Failure to notify will attract a penalty of 1,000 penalty units ($181,740).

Read More

New Cyber Security Evaluation Tool released by US Homeland Security for organisations to self-test their security systems

By Cameron AbbottWarwick Andersen and Jacqueline Patishman

The United States Department of Homeland Security has developed the Cyber Security Evaluation Tool (CSET) which provides a systematic (and repeatable) process that critical infrastructure asset owners can use to assess and improve their cyber security management systems. This tool has a particular focus on the security of industrial control systems and information networks.

Read More

New US / Aus cross-border data access regime

By Cameron AbbottWarwick Andersen and Jacqueline Patishman

The Telecommunications Legislations Amendment (International Orders) Bill 2020 has just cleared both houses of parliament. The new bill establishes a reciprocal cross-border data access regime between the United States and Australia which will allow for cross-border communications between foreign governments for national security and law enforcement purposes.

Read More

Is ABC’s mandatory login into ABC iview legal?

By Cameron AbbottWarwick Andersen and Jacqueline Patishman

From July 1 all users of ABC’s on demand platform iview will be required to log in (and to have an account) to use the platform. It’s been reported that the former federal Privacy Commissioner, Malcolm Crompton, has been pushing to reverse the ABC’s decision, arguing that because the ABC is publically funded, Australians shouldn’t have to pay for content (which we have already paid for) with our data. 

Read More

Victorian Government QR Code Service now compulsory for all workplaces and businesses

By Cameron AbbottRob Pulham and Jacqueline Patishman

All Victorian workplaces businesses and venue operators must now use the free Victorian Government QR Code Service (or use a third-party system that links back to the government’s interface) to meet their contact tracing obligations.

Read More

Australia’s international cyber strategy pivots towards critical technology in neighboring countries

By Cameron Abbott, Michelle Aggromito, Jacqueline Patishman and Emily Gamaroff

In a bid to maintain stability in the Indo-Pacific region, Australia has pledged $37.5 million to bolster the security and development of critical technology in neighboring countries as part of its updated International Cyber Engagement Strategy. The funding aims to promote the resilience of critical technologies in Southeast Asia and to support Australia’s Pacific neighbours by improving online safety, counter misinformation and to fight cybercrime.

Read More

Even the Best Fall Down Sometimes: Nine Network suffers large-scale cyber attack

By Cameron Abbott, Warwick Andersen, Rob Pulham and Max Evans

Channel Nine has suffered the largest cyber attack on a media company in Australia’s history, according to reports from IT News, the AFR and Nine News.

The cyber attack, reported by Channel Nine as a variation of a ransomware attack, struck early Sunday morning, resulting in television and digital production systems being offline for more than 24 hours. The attack impaired Channel Nine’s ability to broadcast from its Sydney studios, forcing the media outlet to shift operations to its Melbourne studios.

Read More

No News is Bad News! Big digital platforms flex their influence to no avail.

By Cameron Abbott, Michelle Aggromito and Jacqueline Patishman

After severe criticism from the Australian government and others, Facebook has reversed its initial response to the controversial news media code of banning all Australian news on its platform, now stating that news and key pages concerning public health and government will be restored (although it has not provided a deadline for when this will occur).

Read More

Less than two weeks to go: New Zealand Privacy Act commences 1 December 2020

By Cameron Abbott and Keely O’Dowd

On 1 December 2020, the New Zealand Privacy Act 2020 will come into operation and repeal and replace the Privacy Act 1993.

The Privacy Act 2020 modernises New Zealand’s privacy laws and seeks to keep pace with international standards and technology. While New Zealand’s new privacy legislation is not as onerous as other international privacy laws, such as the GDPR, it still introduces significant changes including:

  • mandatory data breach notification;
  • new investigative and regulatory powers for the New Zealand Privacy Commissioner; and
  • new criminal offences and penalties, including fines of up to $10,000.
Read More

Copyright © 2019, K&L Gates LLP. All Rights Reserved.