Security News

Oxfam Australia has confirmed a data breach after suffering a cyberattack and their donor databases put up for sale on a hacker forum in January. Last month, BleepingComputer was the first to report that a threat actor was selling a stolen Oxfam Australia database containing 1.7 million user records.

Oxfam Australia investigates a suspected data breach after a threat actor claimed to be selling their database belonging on a hacker forum. Last week, BleepingComputer learned of a threat actor claiming to be selling a database containing the Oxfam Australia contact and donor information for 1.7 million people.

Australia's consumer watchdog launched legal action against Facebook on Wednesday, alleging the social media giant "Misled" thousands of Australians by collecting user data from a free VPN service advertised as private. The Australian Competition and Consumer Commission has accused Facebook and two of its subsidiaries - Facebook Israel and Onavo Inc - of misleading people who downloaded its virtual private network app Onavo Protect, by collecting and using their "Very detailed and valuable personal activity data".

The United States and Australia on Friday announced a partnership for the continuous development of a virtual cyber training range. The Cyber Training Capabilities Project Arrangement, which was signed on November 3, results in the incorporation of Australian Defense Force feedback into the U.S. Cyber Command's simulated training domain, the Persistent Cyber Training Environment.

The United States and Australia have signed a first-ever bilateral agreement that allows the U.S. Cyber Command and the Information Warfare Division of the Australian Defense Force to jointly develop and share a virtual cyber training platform. The two countries' departments of defense will achieve this by incorporating IWD's feedback into USCYBERCOM's simulated training domain known as the Persistent Cyber Training Environment.

In 2016 Australia's online census crashed and burned after legitimate attempts to complete the survey were mistaken for a DDoS attack, the routers funnelling traffic failed, and disaster recovery plans did likewise. "Generally appropriate frameworks have been established covering the Census IT systems and data handling, and the procurement of IT suppliers. The ABS has not put in place arrangements to ensure that improvements to its architecture framework, change management processes and cyber security measures will be implemented ahead of the 2021 Census."

Australia will develop the capability to use payment records in the service of coronavirus contact tracing. A National Contact Tracing Review released last Friday called for a raft of information technology responses to the pandemic, on grounds that containment of the novel coronavirus will be needed even after a vaccine emerges.

Australia's Department of Foreign Affairs and Trade has just exposed personal details of over 1,000 citizens in an email. Australia has all-but-closed its borders during the COVID-19 pandemic, rationing the number of citizens who can fly into the country each day.

Most online attacks could be easily avoided by following basic cyber security advice, Australia's national cyber security bureau has said - even as it warned that the impact and severity of things like ransomware attacks are getting worse and worse. "Cybercriminals follow the money," said the Australian Cyber Security Centre in its annual report for 2019-20, published earlier this week.

Privacy watchdogs in Britain and Australia have opened a joint investigation into facial recognition company Clearview AI over its use of personal data "Scraped" off social media platforms and other websites. Clearview AI Inc. came to attention after investigative reports detailed its practice of harvesting billions of photos from social media and other services to identify people.