Cyber-Attack Australia : PM Morrison Warns of 'Sophisticated' State Hack


[WN] - Australia's government and institutions are being targeted by ongoing sophisticated state-based cyber hacks, Prime Minister Scott Morrison says.

Mr. Morrison said the cyberattacks were widespread, covering "all levels of government" as well as essential services and businesses.

He declined to identify a specific state actor and said no major personal data breaches had been made.

The attacks have happened over many months and are increasing, he said.

The prime minister said his announcement on Friday was intended to raise public awareness and to urge businesses to improve their defenses.

But he stressed that "malicious" activity was also being seen globally, making it not unique to Australia.

Who has been targeted?

Mr. Morrison did not name specific cases but said it had spanned "government, industry, political organizations, education, health, essential service providers and operators of other critical infrastructure".

He did not give further details. Previously, defense manufacturers, government contractors, and accounting firms have been among those to report data breaches.

Last year, the Australian National University said it had been hacked by a sophisticated operation that had accessed staff and student details.

Australia's main political parties and parliament were hit by a "malicious intrusion" earlier in 2019, also attributed to a "sophisticated state actor".

Who is behind it?

Mr. Morrison said officials knew the attacks were from a state actor "because of the scale and nature of the targeting and the tradecraft used".

"There are not a large number of state-based actors that can engage in this type of activity," he told reporters on Friday.

When asked to identify a country, Mr. Morrison said he would not make "any public attribution".
  • Amazon 'thwarts largest-ever DDoS cyber-attack'
  • Australia defense data in 'extensive' hack
  • How reliant is Australia in China?
  • Cyber intelligence experts have long linked various hacks in Australia to China.
They say China is one of the few states, along with Russia, Iran, and North Korea, which have the capacity for such attacks - and are not allied with Australia. However, they also note that cyber-espionage between countries and even allies is common.

"There's always simmering tensions between Russia and China so really it comes down to those being the key actors they [Australia] would be referring to," expert Joshua Kennedy-White told the BBC.

The Reuters news agency has previously reported that Australian intelligence agencies suspected China of carrying out the parliament hack in 2019. Canberra declined to comment.

The headline itself was clear. Many political, educational and health organizations have been targeted by a state-based cyber actor with "significant capabilities". However, much about Mr. Morrison's press conference was understated.

For example, it was not clear why this announcement was made at this particular moment - given these attacks have been going on for a while. Mr. Morrison made a similar announcement early last year.

Despite blaming a "sophisticated state actor", he refused to name names - even after being directly asked about the country almost everyone was thinking about: China.

Relations between the countries have grown tense in recent years but have significantly worsened after Australia echoed the US in calling for an inquiry into the origins of the coronavirus, first detected in China late last year.

China has since imposed tariffs on Australian barley, stopped beef imports and warned Chinese citizens and students about the "risks" of traveling to Australia for tourism or education because of racist incidents.

Australia has also ratcheted up its rhetoric. Last week, Mr. Morrison said he would not give in to "coercion" from Beijing.

It's hard to be 100% sure that China could be behind this, but what we know is that Australia's leadership has chosen a moment when its relationship with its powerful trading partner is at an all-time low to announce publicly that it is under cyber-attack from a powerful state.

Which actions did Mr. Morrison urge?

He said businesses - particularly health infrastructure and service providers - should improve their technical defenses.

Cyber defense agencies had thwarted "many" hacking attempts but protection required "constant persistence and application", he added.

"We raised this issue today not to raise concerns in the public's mind, but to raise awareness in the public's mind," Mr. Morrison said.

"We know what is going on. We are on it, but it is a day-to-day task."

Major cyber attacks in Australia

2020: Incidents reported across major Australian firms, including steelmaker BlueScope, logistics firm Toll Group, and state government agency Services New South Wales

June 2019: The Australian National University revealed a "highly professional" group of up to 15 hackers gained access to student and staff details, as well as academic research, for about six months

February 2019: Australia's parliamentary computer network and political parties were subject of an attempted attack by a "state actor"

2017: Information about fighter planes and navy vessels was stolen from an Australian government contractor.

2015: Foreign spies attacked the Australian Bureau of Meteorology.

The defense minister, Linda Reynolds, said increasingly sophisticated malicious cyber activity harmed Australia’s national security and economic interests. She urged all Australian organizations to be alert to the threat and protect their networks.

The government briefed the office of the opposition leader, Anthony Albanese, on Thursday evening.

Last year Reuters reported Australian had intelligence determined China was responsible for a cyber-attack on the parliament and the three largest political parties before the May 2019 federal election, citing five sources with direct knowledge.

Post a Comment

0 Comments