CyberWatch: Australia

Insight on how cyber risk is being mitigated and managed in Australia and across the globe.

 

1
Insufficiency meets Punishment: Polish DPA issues largest fine for Insufficient Security and Organisational Measures
2
The FBI understands if you pay ransom to cyber hackers, but isn’t too pleased about it
3
Hand Out of the Cookie Jar: CJEU Issues Long-Awaited Decision on Cookies
4
Update on the Criminalisation of Non-Consensual Distribution of Intimate Images in WA: Another Conviction in Australia
5
Brexit: Deal or No-Deal? Data is the Question
6
Aviation Sector Resolves to Protect Industry from Cyber Threats
7
PROPOSAL TO INCREASE PENALTIES FOR PRIVACY BREACHES
8
Hospital systems in quarantine after ransomware attack in Victoria
9
Riding in cars with hackers
10
Hyp3r-misappropriation of data gets Instagram’s attention, but is enough being done?

Insufficiency meets Punishment: Polish DPA issues largest fine for Insufficient Security and Organisational Measures

By Cameron Abbott and Max Evans

Further to the Facebook and Tesco scandals, and the apparent statistic increase of enforcement fines issued, the Polish Data Protection Authority has issued a landmark fine of €645,000 against online retail company morele.net for insufficient security and organisational measures violating data confidentiality and integrity principles prescribed in the EU’s General Data Protection Regulation.

Read More

The FBI understands if you pay ransom to cyber hackers, but isn’t too pleased about it

By Cameron Abbott and Karla Hodgson

While the FBI won’t be impressed if you pay ransomware demands in order to get your systems or data back after a cyber attack, its updated ransomware guidance contemplates that this might just be the outcome of an attack anyway.

Read More

Hand Out of the Cookie Jar: CJEU Issues Long-Awaited Decision on Cookies

By Cameron Abbott and Max Evans

Earlier this month, the Court of Justice of the European Union (CJEU) issued a long-awaited decision with respect to the requirements necessary for entities to satisfy in order to attain the valid consent of a user to the use of cookies to track and analyse his or her personal information.

Read More

Update on the Criminalisation of Non-Consensual Distribution of Intimate Images in WA: Another Conviction in Australia

By Olivia O’Brien, Philip Murray and Kathleen Weston

Just a few months ago, we published an article on the criminalisation of the non-consensual distribution of intimate images in Western Australia. Only this week, there has been a second successful conviction under the Criminal Law Amendment (Intimate Images) Act 2018 (WA) (WA Act) in the Rockingham Magistrate’s Court.

Read More

Brexit: Deal or No-Deal? Data is the Question

By Cameron Abbott and Max Evans

With the Brexit deadline looming as 31 October 2019, and no finalised deal in place, the prospects of an inconclusive Brexit are growing. Therefore, there remains significant uncertainty as to the actions and preparations of entities who are subject to the unpredictable tides of this political sea. So how should such companies prepare in these circumstances of a foreseeable no-deal? Our colleagues have tackled this challenging question in Volume 1 of The Privacist available at the K&L Gates Hub.

Aviation Sector Resolves to Protect Industry from Cyber Threats

By Cameron Abbott and Karla Hodgson

Cybersecurity is now well and truly a priority for the aviation sector, with the International Civil Aviation Organization (ICAO) adopting an action-oriented cybersecurity resolution at its 40th Triennial Assembly earlier this month.

Read More

PROPOSAL TO INCREASE PENALTIES FOR PRIVACY BREACHES

By Cameron Abbott and Rebecca Gill

In light of concerns over how personal data is being used by social media platforms and tech companies, the Commonwealth Government has proposed amendments to the Privacy Act in order to more harshly penalise companies for privacy breaches. The new regime, which aims to update Australia’s privacy laws in line with increased social media use, will see tougher penalties for all entities that are subject to the Privacy Act, not just the headline companies like Google and Facebook.

Read More

Riding in cars with hackers

By Cameron Abbott, Michelle Aggromito and Alyssia Totham

Ransom-based hacking techniques have primarily been limited to the intangible. We live in a world where unauthorised access to email accounts, bank accounts, and computer systems that may otherwise be private is no longer uncommon.

In some situations, hackers demand a lump sum in return for reinstating control of the accounts and systems to its owners and managers, and otherwise refusing to pay this ransom can likely leave our information and data at the mercy of hackers.

Read More

Hyp3r-misappropriation of data gets Instagram’s attention, but is enough being done?

By Cameron Abbott, Michelle Aggromito and Alyssia Totham

Until recently, a security vulnerability in the social media platform Instagram, allowed Hyp3r to illicitly harvest millions of Instagram users’ data and track their locations.

In a similar manner to the Cambridge Analytica scandal that plagued Facebook following the 2016 US presidential election, this latest example of Hyp3r’s mass data collection was discovered through a journalistic investigation and was not uncovered by the social media platform.

Read More

Copyright © 2019, K&L Gates LLP. All Rights Reserved.