Cyber criminals have become so successful they are franchising their software, Minister Assisting the Prime Minister for Cyber Security Dan Tehan will reveal on Tuesday when he launches a new report warning the public of the threats lurking online.
"Business is booming for cyber criminals and criminals are treating cyber as business," Mr Tehan will tell the National Press Club according to speech notes.
With local companies among those affected by two global cyber attacks in 2017, the Australia Cyber Security Centre identified 47,000 cyber incidents affecting individuals and businesses in the past 12 months, a 15 per cent increase. More than half were online scams or fraud, which was up 22 per cent.
But Australia's cyber police are also seeing an increasing number of non-traditional victims targeted, with attacks on automotive, accommodation and hospitality businesses rising by 50 per cent.
National securityMr Tehan will also reveal the Australian Signals Directorate responded to 671 serious cyber incidents involving government systems.
"Analysis showed that the malicious actor gained access to the victim's network by exploiting an internet or public-facing server, which they accessed using administrative credentials," he will say.
"Once in the door, the adversary was able to establish access to other private servers on the network."
The centre worked with the company to fix the breach and remove the cyber attacker.
Mr Tehan will also say authorities have now seen evidence of cyber threat software and hardware being sold to other operators who lack the skills to create them scratch.
"The days of the cyber threat being deployed by a hooded computer geek in a basement are over," he will say.
"Sophisticated organised criminal networks are taking control and franchising their business model. Ransomware, data-theft, spyware and other infrastructure can be purchased on the darkweb by anyone with an internet connection."
"Each day, there are Australian businesses that are being robbed, held to ransom, or shut down," he will say.
"In the next 12 months, there will be more globally significant attacks. There are new cyber threats on the horizon, such as cyber terrorism. They all pose a danger of financial and social damage."
Data de-identification is probably more complex than you think. A new guide to help public servants and others is a good step forward, but public engagement is underdone, says an expert on the legal side of data use and privacy.
The minister isn't happy to have his plans for new submarines questioned, but the way the decision was made reflects a long-standing problem, Michael Keating argues. He thinks civilians should be allowed to question military expertise.
“The system is beyond comprehension by the public, and poorly understood by most within government — lending itself to a myriad of myths and confused accountability,” says a new report from the Productivity Commission on the national tug-of-war over tax revenue.
The Victorian government has hired an IT risk and governance specialist from the finance industry as its first chief information security officer, as part of a push to bolster the state’s ability to fend off cyber threats.