Read Time:1 Minute, 36 Second

+If hackers are denied a payday, ransomware business models will not correctly be carried out.

Australia has taken a monumental step in the fight against malicious cybercrime. To crack down on ransomware attacks and prevent hackers from profiting from their ill-gotten gains, the government has recently passed legislation that makes it illegal for organisations and individuals to pay a ransom demanded by hackers.

However, the Australian Energy Market Operator’s (AEMO) voluntary Australian Energy Sector Cyber Security Framework (AESCSF) and the mandatory Australian Prudential Regulation Authority’s (APRA) CPS234 have done little to shield the country from ransomware attacks. 

Frameworks and systems will only be valid if they are implemented. As the recent high-profile incidents indicate, more might be done to assure compliance before a breach happens.

The main problem is that there needs to be more incentive or disincentive to change the status quo, leaving the adoption of these principles entirely up to the organisation in question.

The new fines are now three times the value of any advantages earned from committing a significant violation, or $50 million, up from the previous meagre cost of doing business of $2.2 million.

Commissioner Falk emphasised that these new laws will act as an effective deterrent against those who attempt to ignore privacy regulations, noting that “the cost of doing business must include a commitment to the protection of people’s personal information.”

However, the challenge is that more cyber perpetrators will innovate and make their attacks more sophisticated, especially in a highly profitable industry like cryptocurrency. In 2022, AUD$ 650 million was transferred to allegedly ransomware attackers’ wallets. 

With more substantial penalties in place, organisations must ensure that they comply with the Australian Privacy Principles and other privacy laws. Companies must ensure their systems are secure, their staff adequately trained, and incident response plans ready when needed. Those who do not meet these standards face fines and criminal charges.

Happy
Happy
0 %
Sad
Sad
0 %
Excited
Excited
0 %
Sleepy
Sleepy
0 %
Angry
Angry
0 %
Surprise
Surprise
0 %
Previous post Australians Will Have a Better Control With Their Data, Including Opting Out of Targeted Ads
Next post Australians Need to Learn It the Hard Way: The 2022 Major Cyber Attacks Awakened Companies