Australia Points The Finger At Russia For Cyberattacks

Uploaded on 2018-05-10 in GOVERNMENT-National, GOVERNMENT-Defence, FREE TO VIEW, INTELLIGENCE--International, INTELLIGENCE-Hot Spots-Russia, NEWS-Cybersecurity News, TECHNOLOGY--Hackers

Australian intelligence agencies have identified Russia as the actor behind a series of cyberattacks on Australia, the US and the UK in 2017, the government has revealed. There is now a push to expand the powers of the country's cyber spy agency to collect intelligence on Australians is being backed by Home Affairs Minister Peter Dutton.

The controversial idea to restructure the Australian Signals Directorate (ASD) is strongly opposed by some in Cabinet who argue it is not necessary.

Recently thousands of unsecure Australian routers were accessed and Defence Minister Marise Payne (pictured) confirmed there were “potentially 400” Australian companies affected.

Despite the breach, the government said there was “no indication Australian information has been successfully compromised”.
The government's cyber-security office has contacted all the businesses on the list to alert them to the risk. 
In Australia, the hack only affected private companies. Treasurer Scott Morrison told SBS News “no Australian departments or agencies” were impacted.

Advice circulated by US and UK authorities warned Cisco routers, a common commercial brand, were affected.
Fergus Hanson, head of cyber security at the Australian Strategic Policy Institute, said the Russian government may have been trying to establish control over networks for use in later attacks.

“Essentially you've got Russia exploiting vulnerabilities in Cisco routers to potentially conduct a whole range of activities, from espionage to pre-positioning for attacks on critical infrastructure,” Mr Hanson said.

Cyber-attacks can, for example, cause widespread chaos by shutting down energy grids. Mr Hanson said the affected routers were old models that had not been patched with the latest software.

“They're legacy pieces of equipment that are being phased out but they've got vulnerabilities as a result of the fact that they, for example, have not been patched."

Cyber Security Minister Angus Taylor, who is in the US for a cyber conference, told SBS News the government was "now seeking to hold bad behaviour to account". He said it was now possible to identify the culprits behind many attacks, including state actors like Russia. Asked whether the government would publically name Russia and other actors more often in the future, Mr Taylor said "I think we will." 

Analysts have speculated Russia may use cyber-attacks to retaliate over recent Western airstrikes on Moscow's ally Syria. Russia said there would be consequences for the strike but did not offer any more detail.

While this hack occurred in 2017, Mr Hanson suggested there could be a connection, suggesting Australia and its allies may have believed the Russians were about to utilise the exploits they set up last year.

“What may be the case is they've had a particular piece of intelligence that might suggest, for example, the Russians are going to use a cyber means to respond to those attacks on Syria, they've threatened retaliation and they may be pre-empting,” Mr Hanson said.

He also suggested the three countries may have sat quietly on the intelligence because they were “using the knowledge” to understand Russia’s methods.Russia has not responded to the accusations, but regularly denies any role in state-sponsored hacking.

SBS:           ABC

You Might Also Read:

Russian Hackers Steal $10M From Banks:

Australia’s Sharp Turn To Information Warfare:

 

« GDPR: It’s A Marathon, Not A Sprint
Hacker Reveals What He’s Learned »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Technology Association of Georgia (TAG)

Technology Association of Georgia (TAG)

TAG's mission is to educate, promote, influence and unite Georgia's technology community to stimulate and enhance Georgia's tech-based economy.

Zadara Storage

Zadara Storage

Zadara provide complete data backup and protection delivered as a fully-managed service.

ASU Online - Information Technology Program

ASU Online - Information Technology Program

The Information Technology program at ASU Online provides you with the expertise to design, select, implement and administer computer-based information solutions.

Deutsche Cyber-Sicherheitsorganisation (DCSO)

Deutsche Cyber-Sicherheitsorganisation (DCSO)

DCSO was founded in 2015 with the aim of counteracting the threats posed by globally organized cybercrime and state-controlled industrial espionage.

Hague Security Delta (HSD)

Hague Security Delta (HSD)

The Hague Security Delta Campus is home of the leading cyber security cluster in Europe with an Innovation Centre, labs and training facilities.

Towergate Insurance

Towergate Insurance

Towergate Insurance is a leading UK specialist insurance broker. Business products include Cyber Liability Insurance.

Uleska

Uleska

Uleska is a scalable platform that provides automated and continuous software security testing whilst translating cyber risk.

HCC Embedded

HCC Embedded

HCC’s mission is to ensure that data stored or communicated by an embedded IoT application is secure, safe and reliable.

Kickstart

Kickstart

Kickstart supports your startup in scaling deep technology businesses in Switzerland in areas such as AI, Blockchain and Cybersecurity.

Spohn Solutions

Spohn Solutions

Spohn combines highly-experienced staff with a vendor neutral approach to deliver optimal solutions for IT Security and Compliance.

Vancord

Vancord

Vancord is an information and security technology company that works in collaboration with clients to support their infrastructure and data security needs for today and tomorrow.

Avint

Avint

Avint delivers transformational cybersecurity solutions that help both commercial and government entities achieve mission success.

Questex Asia Total Security Conference

Questex Asia Total Security Conference

Questex Asia’s Total Security Conferences is one of the industry’s most prestigious and engaging forums for the region's top information security leaders and business decision-makers.

Blockfence

Blockfence

Blockfence are a seasoned crew versed in enterprise-grade cybersecurity and crypto, on a mission to collaboratively shape the future of Web3 security.

Flawnter

Flawnter

Flawnter is a security testing software that finds hidden security and quality flaws in your applications.

DHCO IT

DHCO IT

The DHCO IT team are experts in IT support, cyber security, cloud support and disaster recovery, and are Microsoft 365 partners.