What Australian companies need to understand is that the data they collect doesn't belong to them, it belongs to their customers. There should be massive, multi-million dollar fines for companies that do not protect this information properly.

@chriswindleydigitalsalesexpert

Жыл бұрын

as the information commissioners office is doing in the UK. MSP's are about to become Critical National Infrastructure here too soon.

@AZ2PM

Жыл бұрын

Sounds good until you realise that if you fine them millions for leaks, they'll instead just pay millions to russian hackers to cover up that they got hacked. And in turn, you actually make the situation worse. So no, not a good solution

@joalltaeuber8065

Жыл бұрын

@@AZ2PM Good point.

@Tech-geeky

Жыл бұрын

right,,,, and that will not change... it has not in 10 years.. Ideally, all governments can say "is offer some sort of fine if businesses are not using [acceptable] measure of protection. We need details... What are these {measures} they speak off?? If they won't provide details then neither will be I. Look, its fair...... at the end of the day...

@4akat

11 ай бұрын

and that they probably shouldn't be collecting it anyway. the customer can keep that data and bring it with them when they need to do business with that company

I honestly believe that Companies and Corporations shouldn't be allowed to hold so much obviously unnecessary data!

@protoretro1290

Жыл бұрын

Not to mention the ludicrous difficulty in getting them to delete said data. Data Brokers (yes that is a real thing) are worse... They make you jump through a thousand hoops and then make you do a thousand more just to have them press a button

@Tech-geeky

Жыл бұрын

Well ya... 2nd solution 1st problem: Users shouldn't be soo gullible at giving it up, thinking businesses will protect it... I've already sorted THAT part out...... Unfortunately no one else seems to. I'm not saying i don't give up anything, That would be impossible, otherwise i wouldn'yt be online, but i can sure as hell reduce what goes out.. I think of a scale of 1 to 10 (1 being low, and 10 highest level of privacy), I would say i'm a "8"

@Tech-geeky

10 ай бұрын

Pretty we are coming to this decision *now*.... Better late then never, i suppose, but while we were "thinking" about what do to next, our privacy was violated. :P. Slow to act as usual in Australia. I beak the law to a degree and most of classify me as a criminal "put me in jail" etc.. BUT i do so because the laws are not suited enough for privacy. The government mentioned this in a way when they said "no one should pay a ransom". Hackers share stolen data all the time between each other, and and "ransom" is only a small segment of how rich they would get paid, as we know information is valuable... So, i'd consider myself an lucky just to get some data back.... However, the government doesn't want people's data back ...... Privacy loss. The only way is business not getting as much in the first place.

@Tech-geeky

8 ай бұрын

Perhaps if users educated themselves more too, that data wouldn't even be in their hands in the first place. It's what i do best at..

@Tech-geeky

7 ай бұрын

@@alcatros I'm not saying don't regulate,, i'm saying its taking "too long" to do this. While their trying to regulate, our privacy is invaded.. Doesn't that concern ?? Saying it is one thing, taking action on it is another... and seems governments have been in this racket far too long.... If they were serious, they would of acted. Period... Big companies can more likely afford fines. and they'll pay it just to silence the government.... Large corporations do that all the time.. They may learn a lesson where they go bankrupt :P Smaller business don't need to be regulated because they have been doing the right thing all the time anyway.. So the system fails in itself.

We need to look at the incompetence of the victims. Why do companies such as Latitude keep customer data for many years beyond when they no longer have dealings with the customer? Why do they need to keep say drivers licence and passport info once they have suitably confirmed the client's identity? These files should be securely expunged and deleted. Organisations need not only to improve their security, but to make themselves smaller and less interesting targets.

@rmac3217

Жыл бұрын

The finance model runs on selling the debt, they just worked out (how many would pay + interest) - (ppl who won’t pay x 10%). The debt is sold to a collection agency who runs on anything over 10% of the debts currently in collection is gross profit.

@waffle_burger8499

Жыл бұрын

Well said, it's like they have an obsession with collecting all this data, but almost no management system for how to manage it properly and decide what they don't need.

@kamranaliyev5533

Жыл бұрын

İt is a government requirement for all financial institutions keept the records for 7 years, it is not voluntely made choice unfortunately Bob.

@barrythompson8813

Жыл бұрын

@@kamranaliyev5533 Thats not true, your confusing it with the need to maintain business information for the ATO.

@chiquicat1

Жыл бұрын

The real question is why unethical companies like Latitude exist? Preying on people’s debt making it super easy and tempting to apply for a loan people cannot afford. When I see their ads I wish they burn in Hell along with fast food and gambling ads. All of them the Cancer of Australia.

Pathetic drama by the interviewer and govt representitives pretending to be upset that the hackers are uncaring about the impact on the victims of the hack. How about demanding the Medibank CEO & CIO hand over their recent security controls reviews. We'll see how much they care about their clients data.

@bhavanisingh3294

Жыл бұрын

It's about companies who don't care about the customers

These companies need to be fined much more than they have been for this breach of private data. They should also be forced by law to delete data after a certain amount of time has passed.

@rmac3217

Жыл бұрын

Ahahaha, you need to get a job then. All your info being collected and documented is normal on many levels, if you want a tax return or want medical surgery for example. The question is, what can the govt do with this info? Can they prevent you from going further than 10km from your ‘home’ without any charge, arrest or court date, as has been shown recently?

@Arcadia1701

Жыл бұрын

100%. They shouldnt be allowed to collect (and forced to delete) any information they don’t absolutely categorically need to deliver the service.

@Dave-cx1tz

Жыл бұрын

Totally, the current fines are just one of the many costs of operating ..

@andrewthomas695

Жыл бұрын

These companies often pay large political donations. So they rarely are held accountable.

@joelr2214

Жыл бұрын

​@@andrewthomas695 Never held accountable? I would refer you to my comment above and The Privacy Act 1988 and on the 13 December 2022 the increase of maximum penalties under the Privacy Act where they provided the Office of the Australian Information Commissioner with enhanced enforcement powers. The commissioner has taken action with these new powers against many companies involved wake up educate yourself.

Cyber Security Student Threat Hunter here - It's well known that the Optus hack was not done by big bad Russians, but by someone that found an open API on the Optus site requiring zero credentials to gain access. Anyone could have entered it and stole data. Someone with very limited skills could have gained access. 24hrs after the news broke, threat hunters were reporting that the open API was STILL up and OPEN... It's also known, that yes, Optus did indeed pay the 'hacker'. That's why he completely dropped the campaign and slinked away with a lame excuse. That was part of the deal. ACCC just announced that Aussies were scammed out of 3.1 BILLION last year, but also disclose that only 30 percent of victims report being scammed. Let's just say a hefty sum of 10 BILLION was scammed from the Aussie public last year and that number will only increase this year... Amateurs are finding hundreds of SMS scam campaign Phishing sites every day aimed at scamming the Aussie Public. Mygov, Auspost, Linkt, all banks, etc. These are the sites people find in links when they get a SMS message that 'looks' official. Very little is done about these sites it seems and the Scam Groups are making an absolute killing... As unpaid Students, we are having to spend hours daily going through troves of NRD's and finding/reporting them because the 'experts' we are all told that are protecting the Aussie public, well, they're nowhere to be found. 'Australian Cyber Security' only seems to apply when scammers/hackers target gov/company directly and the Aussie Public being scammed directly is of no real importance...

@barrythompson8813

Жыл бұрын

Very accurate observations. Australian companies and Govt agencies don't want to do security, they push back in every project meeting and security controls review.

@joalltaeuber8065

Жыл бұрын

@@barrythompson8813 I guess it all comes down to these entities not wanting to spend $ on things they either don't understand or don't care about. They could be using cyber tools that may cost a few hundred, but would save millions of Aussie dollars from being in the hands of scammers. I hope things change before an inevitable cyber 9/11 occurs, but then again, from the complete apathy we have witnessed, maybe that's the plan...

@i_am_dumb1070

Жыл бұрын

They think it is better to pay 100K one time to a ransomware group than hiring cybersec employees that would cost more than 100K/annum . My brother had a tech support IT company forced to shut down after a hacker hacked his network and had cctv access he also did a DDOS attack and constantly calling with international numbers on comapany phones my brothers manager got his fb handel hacked because he received a phishing email, company had 32 computers in total and all had ransomware on it .

@danielray7457

9 ай бұрын

You sir are a hero. Big companies can pay security experts for protection. The 1s that don't we find out about on the news eventually. The real victims are the everyday and usually elderly people that get scammed out of huge amounts of money in very basic scams. There are entire you tube videos dedicated to this. Those videos showed more being done to help fix things than this entire documentary.

@joalltaeuber8065

9 ай бұрын

@@danielray7457 Our account, which we use to both expose scammers and lacklustre Oz cybersecurity has been attacked after we were featured on CH7 The Latest. The main culprit is some lazy AF Oz cybersecurity entity that is receiving huge $ to 'protect' brands who got embarassed. We exposed daily what a terrible job they are all doing - they sent 20k fake bot followers to try to get us taken down. Oz 'cybersecurity' is broken. Poor leadership, nepotism instead of meritocracy. In our run we found and took down thousands of scam sites that were not being picked up by people being paid 6 figure sums to do so, and we estimate we saved Aussie public tens of millions that they would have otherwise be scammed out of by these sites/scammers.

45 minute documentary detailing what happens when you threaten hackers. Australia’s cyber security minister ends documentary by making public threat to the hackers of the world…

Hackers are ALWAYS one step ahead...That's how the game is played.

Companies storing our personal data need to be held to account ... Laws have to be created to ensure that companies who store our Financial and Medical data .... HAVE to store that data in an Encrypted form....Only held for the MINIMUM amount of time it is required and destroyed in a manner that it can never be viewed again - Companies that are caught breaking these laws should be heavily fined and have their senior managers sent to jail

@Tech-geeky

7 ай бұрын

The problem, is laws change,, once use give up info you've basically lost that privacy, because we take full 100% responsibility companies are gonna do what they say. The trust is broken,, but while most wish they could be heading this way, they'd rather use technology as a gateway to trust more businesses.. No amount of encryption is gonna prevent harm of ones personal data..

@adamjutras7024

7 ай бұрын

Except the government spies on us all with that information as well.

@Tech-geeky

6 ай бұрын

encrypted forms are good, but wouldn't be be better not to hand ot over in the first place? Encryption will be broken, its only a matter of time. Better encryption is always good, but since we only believe public info anyway, all i have to keep is not tell anyone what i'm working on, then announce it at the last minute, freaking everyone out. Sorry, unless i can have 100% certainty business will never share data, i will continue to do what's best for me. It can't be 97%, 95% It MUST be 100%... after all you don't put our privacy policies for no reason do you..

@Ghost_Rider_786

6 ай бұрын

@@Tech-geeky Sometimes you do need to share your personal data IE Medical records from local doctor to hospital ...or ..Financial data when applying for loans etc ... In the UK and Europe we have GDPR laws that are supposed to protect us ... but they are not properly enforced

That threat in the end was so intimidating 😂😂😂

The Aussies could do worse than read a copy of the GDPR and work up something similar. Corporate 'carelessness' is the real problem here. As a security professional with over 40 years in IT I can state with confidence that most computer systems are very poorly managed. Security is still not a priority for many companies. Heads are firmly stuck in the sand. (Also the rather sad and pathetic bravado at the very end about 'getting the hackers' is of course as silly as it sounded in the program)

@joalltaeuber8065

Жыл бұрын

You make really good points and would know more than most about the subject.

@Tech-geeky

Жыл бұрын

Thanks heaps for that, i was gonna say the same... However, no company think we should all hide.... They all reckon they are good at what they do,,,, UNTIL it bites them Its too late by then Hackers are always steps ahead so how can you defeat a moving target ? This crime gangs pop up and rebrand like spammers could easily do as well.. (hope i didn't give anything away). Ukraine has a much better chance of taking down Russia, then Australia has to beat hackers.. At least we know *one* of those is likely, despite what our government things... All "they" care is hacking hackers.. You don't add fuel to the fire, as they just enhances their attacks.. But that's all out government can think of.. Stupid government.

@Tech-geeky

10 ай бұрын

Judging by how many hacks have occurred in the past few months, i doubt many understand the GDPR 😆

@Tech-geeky

8 ай бұрын

What's worse than the Australian Census forms we all fill out ?.. its chock-full of privacy juicy goodness just begging to be harvested. That alone, would be valuable to hackers. Probably more valuable than what we choose to give up online to businesses. It's allot easier to access.. Its all on one form.

@philobetto5106

7 ай бұрын

The bottom line, once something starts it can't be stopped, and in the end Technology was, is , and will be counter productive, it's cheating...

@1:05 NO, IT HURTS BIG BUSINESSES AND CORPORATIONS WHO ALREADY STEAL MONEY FROM THE LITTLE GUY OR THEIR EMPLOYEES..

I like the part where a hacker comments "Australians are the most stupidest humans alive and they have a lot of money for no reason, a lot of money and no sense at all."

@andrewthomas695

Жыл бұрын

As a natural born citizen, I can attest to the collective stupid of my fellow Australians.

@phillipwallbank5

Жыл бұрын

I agree

@Tech-geeky

Жыл бұрын

Ideally, if you think they can't touch you, then you would say that.. Unfortunately, for him, he is right (in part). ...... not the 'stupid' bit, but its not like Australian's think before we give out info either We are willing to offload stuff online and the come back when its 'breached' thinking business will protect us.. lol I would be looking at a 50/50 split...... Give out info, on the condition it can have the 'potential' of being breached... But we don't think like that.. Its why the NSA LOVES Facebook. I have to say this, but sometimes when users don't do the right thing, you make them understand... And if a breach happens to set them straight.... so be it. I'm not boyish towards anyone, but if users are seriously not gonna act to fix it. then what will make them??? A bit 'tough love' is needed. It took me about 6 weeks to retain my brain.

@MeiinUK

9 ай бұрын

Normally a country only gets rich cos they directly or indirectly robs another country. It isn't until I stopped and think about how finances have impacted my life and life experiences... Why would people max out their own credit cards ? What's happened to my father's pension or his savings ? Why are certain companies popping up in other regions of the world with loans and acting in jurisdiction that they shouldn't ? ... Banks selling products between one another also without deep scrutiny as well. I say that some maths have gone wrong imho... from a country with no banks, suddenly to find all global banks opened up for transaction....

@adamlopes9883

6 ай бұрын

It's true. A country full of idiots who take no personal responsibility, and expect the Government to wrap them in cotton wool

Governments need to be held accountable. They work hand in hand.

It was a painstaking labour to come with all details in one prolific documentary thanks a lot for this

@andrewthomas695

Жыл бұрын

This is why we love Aunty (the ABC)

@petesmitt

Жыл бұрын

@@andrewthomas695 Guardian reader?

Does anyone really think that these big organisations don't sell the information they collect about their customers to other organisations that are looking to increase their customer base? A dead give away that they do is when you're filling out your personal particulars and you see the disclaimer that says your personal details won't be disclosed to any third parties.

@7hilladelphia

Жыл бұрын

100% soon as I reply to some good cause I get multiple spam calls & emails along with the corporate follow ups.

@Tech-geeky

Жыл бұрын

its all comes back down to trust.... However, if buesinness cannot be trusted, then [users] change the way we do business.. We keep going down the rabbit hole because its more convenient to trust others. (and obeying the law). (... i suppose that's a brick wall there)

@missinterpreted4923

10 ай бұрын

Recently got a call from a company I have never heard of requesting that I call back about an overdue BAS account - I thought it was a scam and rang my accountant who looked into it and confirmed that the company was in fact working on behalf of the ATO. So I guess they have our data now.

@Tech-geeky

10 ай бұрын

@@missinterpreted4923 ATO doesn't need permission.. They have all the power do to whatever they want... But they say they need "consent" because, just like power-hungry governments, user will mosre likely trust them if you think "they must have permission" How do you think people get caught getting Centerlink payments while working and no informed consent from me? I got busted .. On my way to work i got a "phone call", tried to play dumb (not knowing. what payment i was getting) but it didn't work 😆 Now, looking back it is kinda funny.... Point is though, they have the power, tyhey don't need consent from anyone... ATO is the same..

@Tech-geeky

8 ай бұрын

As users, if we give up info to "first party" (businesses we deal with directly) actually keep it within their company then perhaps it would be more trustworthy to give info to them... but they constantly say "We need to share it with [our partners] *whoever they are*... Why should that make it sound better?

I believe that part of the reason for Medibank holding so much data is because they probably have to forward it to other parties. But I think the larger reason is that Medibank just didn't care enough to go and do a spring cleaning

@tomsmith6513

Жыл бұрын

Having an unencrypted database is just . . . ridiculous

@barrythompson8813

Жыл бұрын

@@tomsmith6513 Absolutely ! Having worked for several Government agencies and private orgs, it's standard practice to push back on the requirement to meet basic security controls. It's treated as a battle of wills, not a professional compliance engagement.

@Tech-geeky

Жыл бұрын

didn't they even admit their business is 'complex' ? That tells you all. Not even THEY know how much data they keep or share 😆

@johnsonofthunder1026

10 ай бұрын

the class action lawsuits will cost them more than the 10million ransom they refused to pay

@Tech-geeky

8 ай бұрын

spring cleaning is good... but anytime companies say "they need all this' most of the time their augments tend to revolve around protection measures, and verification of an account. If Medibank didn't hold that much info, how they verify who you are ? Its a double--edged sword. People are more inclined to be on the safe-side, but as soon as hackers start hacking, all of a sudden the tables turn and [we users] now want to be protected as well. HOw can you be protected if you cannot verify anyone?

Unfortunately companies are corrupt and greedy and they rarely spend on security. Just offer a fake apology and that's it.

@Tech-geeky

Жыл бұрын

"move on, nothing to see here.."

Nicely done, Thanks very much!!

Sometimes I wish we could all go back to the pay phone days and file cabinet days. It’s incredible how someone from thousands of miles away and a computer can case such damage. Nobody is safe these days

@thekaxmax

Жыл бұрын

can still get scammed and stolen from, and with those technologies the failure is harder to track.

@Tech-geeky

Жыл бұрын

😆 ya that maybe a good idea.. At least in the 80's you didn't have as much damage as we do in 2023.. We all praised 'this new thing" called 'The Internet",,, but look at what came out of it ?

@Tech-geeky

10 ай бұрын

that's tech for ya :) Perhaps we should ban Remote Desktop connections on Windows because of "what it can do" too :P Its used for good purposes, but can be used for bad... Unfortunately, not everyone is trustworthy.

@thekaxmax

10 ай бұрын

@@Tech-geeky some companies and govt departments do exactly that, and for that reason.

@ohno-zx4if

10 ай бұрын

@Tech-geeky The Internet basically ruined man kind as we know it. Humans have been reprogrammed. Once this generation dies the future generation will only know life with insane technology. They will never know how good life was in the pay phone days

That was truly fascinating, wow! 🙌

The International community of Nations must CREATE an International TASK Force for full Apprehension & ANNIHILATION of all Cyber criminals

@criptovida

8 ай бұрын

There is the 5 Eyes.

People would be horrified about how inept many iT teams are and how hard it is to get funding to be even basically competent

@puka6723

4 ай бұрын

Amen

Or companies shouldn’t keep information that don’t absolutely need 🤷‍♂️ no one mentions that. There are only 3m Medibank members yet 9+ m member I for stolen. Why does Medibank keep years and years of history in everyone?

@maigepresents5840

7 ай бұрын

Because your governments laws (or lack of) on data protection let's them do it and there are no consequences for letting our data get hacked... I guarantee that Latitude's ICT budget is lower than the CEO's pay...

At 6:42, that lady gives a great description of both th' hackers and American private health insurance company executives and employees.

The doco drama music is ridiculous and unnecessary, the subject is dramatic enough. Watching at x1.5 speed to make the dramatic tone more bearable 😂

For global online commerce to prosper, every internet user should be licensed and this license is used to login....

nearly all cyber attacks can easily be avoided for example most common form of infection is an employee clicking or downloading a malicious email attachment. very easy to avoid with common sense

@Tech-geeky

8 ай бұрын

unfortunately, the government doesn't make much of that lately 😆

@ 2:19 it's called Cyber CX 😂 aka Cyber Sex 😂😂😂

Another example of why humans can’t be trusted with nice things.

@andrewthomas695

Жыл бұрын

We are our own worst enemy.

@paulbarclay4114

7 ай бұрын

the governments are a far bigger threat to the public than every criminal in the world combined

Pass laws that include large prison sentences with fines for the owners and share holders, hold them responsible because they would/have already been paid and benefited. Maybe!

Man the music in the end sounded like the beginning of the jocker music in the movie "'The Dark Knight".

Well done Australian truth😊

I have been of long belief that the main developers and backers of hackers and hacking tools are the same companies that make antivirus software ECT. It's smart business to create a problem then sell the solution, they just do it from behind a curtain. Considering some of their sales tactics I have seen it shows many of them don't have much in the way of morals.

@Tech-geeky

Жыл бұрын

😆 Yikes ... That would mean every legit business out there eg Apple, Microsoft are also hackers themselves.. I dunno about that, but I do know some companies do scammers part time after hours for a "pay check" in India... like Dell. If you can't trust a legit business, who can ya trust?? But let us all put the fear of god in people.. That'll make everyone understand.. :P

@unnamedchannel1237

5 ай бұрын

Considering the biggest proportion of data lose starts with social engineering I find this conspiracy theory hard to believe.

What a bunch of absolute hypocrites these original information gatherers are, i.e. the companies collecting the information to begin with. So the hackers are "sub-human" are they? What about the ones forcing the rest of us to part with all this information, often selling it or just handling it in such a way that it ends up hurting us all?

@Tech-geeky

Жыл бұрын

"forcing" = "voluntarily" handing it over to comply with laws you mean??

@Immersionist

Жыл бұрын

@@Tech-geeky If you mean that most of the things we're concerned with when it comes to regulations on the "internet", aren't regulated at all, or rely on laws made for something completely different, written perhaps hundreds of years ago, then I suppose you're right, they're not doing anything illegal. But what laws exactly does Google follow when, let's say, they sell information on users to Israel, tailor made to target Palestinians? What laws did Facebook turn to when they sold information to Cambridge Analytica, even selling information on people that wasn't even *on* Facebook? And please, don't try to tell me these are just some rare examples. The problem is of course not always the data gathering in itself, but the lopsidedness with which information is shared, i.e. "who gets to know what is known". If you understand that 60% of all the commercial traffic on the internet is "commanded" by three companies, you should definitely ask if such a concentration of power over information is even possible to regulate. In "forcing", I then simply mean that it's not possible for me to understand what I'm agreeing to, even just connect my computer to the internet, let alone all the things controlled by, for example, the above mentioned entities. (And, no (!), questions do not become more pertinent by using two question marks.)

We have enough problem with the postcode gangs in Australia too.

Another big industry is created in the name of cybercrime. Now, you have to have cyber security for small and big businesses. Enormous demands for students studying cybersecurity. Blaming hackers for stealing information for illegal purposes. But at times, insiders could sell access to so-called hacking groups. Without the help of insiders, it is not so easy to gain access to any database.

Good on you Medibank!

What I dont understand is why aren't these companies encrypting customer data ?

@Tech-geeky

8 ай бұрын

probably the same bunch of companies who don't use a UPS to protect mission crucial date. or create backups.

@maigepresents5840

7 ай бұрын

It's really expensive to deploy and constantly update ICT infrastructure and practices... and, given that companies face no legal ramifications for allowing customer data to be hacked, why would they consider spending millions a year... it's not their data that's being hacked...

@Tech-geeky

7 ай бұрын

@@maigepresents5840 Your right. It's our data we give to them to protect... : That's a pretty bias view of a business we should be trusting with our personal information.. I can see why they like to keep secrets.:P

@jacksoncremean1664

Ай бұрын

it's not as simple as just encrypting the data, it depends on what the data is used for. In most cases, there always will be a state where data will remain unencrypted and that's where the weakness is.

@xkeyscore1120

Ай бұрын

Data at rest and data over transmission should be encrypted. It's that simple. Pay the money and have a good infrastructure. Don't start crying when you get a big fine for not sticking to the PCI DSS standards when you get breached. They are not victims.

Sadly the corporations that are mentioned didn’t inform the cardholders in fact laiude are still recovering funds from the cardholders.😢

Crazy to think the new mobs are computer geeks

The world has always been nasty. Australian individuals are now closer than ever to suffering like others experience from afar. The injustices hurts all the same.

medibank: their money is more important than our privacy.

Brilliant

We need huge surveillance and support . It’s a disgrace ! 😣😖

instead of blaming the hackers, blame the cyber security and IT staff that work at these companies, as well as the executives leadership at these companies. There needs to be much more harsh punishment for negligence involving the loss of customer data.

38:08 wow, qaqa Azerbaycandansan? halaldi! Good luck, and glory to Ukraine 🇦🇿🇺🇦

Is a hospital to blame if a patient dies during a cyberattack? Healthcare systems are the most targeted group in the US. There have been deaths. One hospital that was once praised for having one of the best IT departments/cybersecurity fell victim to a ransomware attack just a few years later and an infant died bc fetal monitoring systems weren’t accessible. The baby was delivered with the umbilical cord wrapped around the neck depriving oxygen - a situation that usually would’ve induced an emergency c-section had their systems not been taken over for an entire month. A hospital in Idaho have to divert ambulances in may bc of an onslaught of cyber attacks. When the best tech companies on earth are struggling under the crippling pressure of attack after attack, it’s unfair to assume all breaches are the result of mere carelessness or negligence. These systems are operated by humans and they’re in a state of war against a sea of state sponsored criminals trying to ruin the fabric of our societies. I’m sure the victims of these attacks often share in some of the blame but ultimately the fault belongs to the criminals. It’s disheartening to see so many comments victim blaming ignoring the fact that massive forces are seeking to undermine and destabilize our countries. But who cares about foreign adversaries when there’s lawsuits to file I guess… that’s how it goes in the States more often than not

Currently suffering from a serious situation of damage due to cybercrime. Starting with sexual crimes, I have been threatened with personal safety, and my computer and mobile phone are often broken or not working due to the frequent hacky response. Cybercrime investigations are not carried out thoroughly, and it is very difficult to get help as a victim in Korea.

The kaseya case was very clever, they go full auto.

Should have upgraded the Internet instead of the NBN. This is never ending LOL

@Tech-geeky

Жыл бұрын

At least we stand a chance in THAT.

I find it weird that they were so fixated on Russia. The people involved can come from anywhere in the world. Often from poorer countries by people who want to make more than they could in a normal job. Yea sure there are hackers in Russia but to single that country out so much was odd. As for the part about the afp protecting business, they gave no actual information on how they do that. That could have been interesting to know as to how they get involved. I can only imagine that they mostly just give advice, but I could be wring and I wish the documentary had explored this more.

@Tech-geeky

8 ай бұрын

even China... but its all too easy to look back at history and blame "the most sophisticated hackers in the world" These days, we have VPN's, Tor, and/or the ability to hide IP''s When it comes to hacking. THAT key fact is omitted., Why? because to me, that is the most relevant of all.. If you wanna hide your tracks as a hacker, that is exactly the first thing you would do. All of a sudden the "situation changes". Are they REALLY from Russia when the IP could be from anywhere in the world? We all gotta start learning just because most people can encrypted servers for good, doesn't exclude then in 'certain key situations either' for bad. But we have a knack for doing that :P Makes my job easier anyway :)

"we take your privacy and security seriously...... now click ok"

I think this same as the cybersecurity attack at Indonesia Bank,

Sometimes, may not need to be too helpful

27:49 That simply makes your companies reluctant to admit that they have been hacked, lol.

'What could Australia learn from Russian cyber-attacks?' - Dont be afraid to employ people with criminal records in defence of the nation.

@skellingtonmeteoryballoon

Жыл бұрын

🤣🤣🤣

@joalltaeuber8065

Жыл бұрын

Very true - If I wanted to hire a lion tamer, I wouldn't be hiring somebody who has never seen a lion, I'd hire the guy who has 7 of them at home already.

@Tech-geeky

Жыл бұрын

If the goal is to "reduce' the noise, then why does Australia/US etcc.. play the same game?? You don't make friends by attacking back... You make friends by holding people accountable.... By attacking, they're not gonna surrender,,, no one would be stupid enough to say "ok, i'll come along quietly'. Put yourself in the mind of a hacker...... Would they seriously admit "I have done wrong"?? Some will crack, and others will not. Australia seems to be on the belief they ALL will.

They are everywhere. Thats what happens when you have off shore companies dealing with everyone's information.

I had this stalker bashers nearby who react on my cellphone...they are like hackers who knew what im doing at my cellphone....

So we are sending out hackers to catch hackers that haven't done anything yet. What year is this again... 1984? Soon, if I think something, I'm going to be arrested. 🙁

It works both ways

How could the reporter possibly think he would care about distress to victims ..

This is why individuals should own their own data, all data. When businesses want to access this data, they pay for an encrypted "look" every time they want to access it. The current model where businesses own individuals' data has failed.

@Tech-geeky

8 ай бұрын

How would a payed lock prevent hackers ? Australia thinks only after the damage is done... No amount of "Sorry" statements is gonna get info back.. Just like in any crime, the punishment should eb equal to the actions caused.. The same does not work for privacy, but it should. Every year cyber attacks increase, never decreases.. EItehr that means hackers are getting smarter, or we're just getting dumber.

@adamlopes9883

6 ай бұрын

@@Tech-geeky ...and to add insult to injury, the Australian Government forgets all about it once it leaves the news cycle.

It's just like a normal functioning software company, the only difference being doing unethical business.

@EEX97623

Жыл бұрын

Like a lot of software companies and digital services then 😄

cyber Attacks include microphone hack

>This facility in the Ukraine used for cyberwarfare is super duper secure >Their online main dashboard for monitoring attacks shown at 38:24 is using an invalid SSL/TLS certificate Lmao

It's so stupid that they try to diminish the character of the hackers. If they just treat them like the highly intelligent people they are. They might have caught the flaw.

This video is truly hilarious in terms of delusion and hubris. The attitude of these companies to how they treat customers/ user data is just jaw dropping arrogance.

It’s time for Australia 😊 with America,,,, Before they Drag us into an other, that we have absolutely no grievance with 🇦🇺 ties with America 🙏

That was interesting

There should be EPIC consequences.

Making a ransom illegal isn't going to change anything. It is, however, going to make the situation worse. Much worse. The cyber-pirates are going to step up the attacks & make larger heists & super-larceny.

@BriannaShider-te2uq

8 ай бұрын

True

@unnamedchannel1237

5 ай бұрын

Just ban hoodies and there will Be no hackers

But we still do business with them and let them in freely without knowing intentions.. yeah good work Aus..

we need that decreiption key.. post it in public.. why keep it to them selves are they having also a cut on the ransomware?

@maigepresents5840

7 ай бұрын

Because if they released it, any hacker worth his or her salt will rewrite their mallard to get around it... or worse, use it to backdoor into every client it's deployed to...

Not sure if my phone number recently was leaked in optus breach or latitude financial, but my phone number was ported. OTP's were sent for large amount purchases. Orders were placed in multiple restaurants under my phone number.

So your saying cyber security is a growth industry. Got it 🌿💖 Good gracious i should've looked into this industry years ago, its like being a detective but online.

A simple and cheap mitigation the database owner can undertake is not keeping former customers PII online. Encrypt, archive, and air gap it OFFLINE! Better Still delete PII if no longer needed, guided by local statute of limitations laws.

The Question big question DO THE GOVERNMENT AGENCIES GLOBALLY NOT HAVE THE TECHNICAL CAPABILITIES TO DE- ANONAMISE THE CRIMINALS? ?

@Tech-geeky

Жыл бұрын

If the NSA is capable of removing SSL encryption, i wouldn't hold it past them. They do have 'power' after all and over-reach all resting on "a trust of privacy polices" that users are trusting. In fact i almost got busted by the FBI recently, which told me this is defiantly true what they do.

@maigepresents5840

7 ай бұрын

Nope... because they aren't stupid enough to give their personal details out like candy...

I think the most important thing to realise about cyber attacks is that the best defence against any attack is all that matters. This means that improving cyber defence does not require caring about who is doing an attack. Think of it like black list vs white list. Business will have to become white list only.

You can spot the hackers by their mo-hawks.

@andrewthomas695

Жыл бұрын

😂🤣

@unnamedchannel1237

5 ай бұрын

That’s what the hoodies are for , to hide the Mohawk

Warfare is warfare...the only difference is where the battle takes place...nothing changes.

45:00 - famous last words.

Ukrainian cyber security forces using Windows 😂

Dan, like all these things how long will they last? Resin anchors have a life… great until they fail! You can’t see the bond or what effect usage is having!

When I was working in mega IT project in China before, as I understand a lot of companies doesn't has the ability to builded up their own anti-harke system,so they don't hold their data. The Chinese government actually cooperated with large databases centers to maintenance the data safety and hold all datas. Companies only pay small fee every month to access their data from super safe databases center.

@MeiinUK

9 ай бұрын

Lol. So those companies are assumed by that they are "hosting" their datas ?....

@Flowerpowers

8 ай бұрын

😢Are you kidding me? I want everybodys whole ctc for 5 years. Claw back this useless employees

@Flowerpowers

8 ай бұрын

I’m not kidding. @gabi get me these peanuts

@Flowerpowers

8 ай бұрын

@gabi You’re my favorite. Oops yea

@Flowerpowers

8 ай бұрын

@gabi I’m scared you know

16:57 That's a captcha they would only be able to use once, but who plays the game perfectly?

Ohhh man....terrible

Medibank would show my bank details on their site for no reason, wouldn't allow me to put non alphanumberic characters as my password for absolutely no reason at all. And still they havnt changed anything!

They hidden a number .one is show up but one is hidden for legacy

Companies make it so difficult to cancel accounts and remove data. Some of them have a "Delete Account" button on the Settings menu and I love that. But others make you email them. I'll call out names. I have been trying to get my Buffalo Wild Wings account deleted for over a year and they have said they can't delete the account or they just wont respond. Target makes you submit your phone number and home address to them to delete your account even though I never gave them that info. As long as I have no personal data on these accounts like order numbers, I'm planning to change my personal data on these accounts to fake data and then switch the email to a throwaway and just abandon the account altogether. But I shouldn't have to do that. The government should pass a law that says entities that do not provide crucial services (like electric companies, hospitals) are required to delete your data within 30 days of receiving a delete request.

Australian politicians are wild, just calling some foreigners subhuman.

When your business data is on the internet its really on the internet, air gaps work well ( unless your an Iranian nuclear scientist)

42:00 how on earth can it be that a SOC of a country doesnt have power backups (UPS, generators)?? Probably they showed them a random meeting room but not cyber command.

It is Google Facebook Microsoft!!

Doxing is illegal in the US

Also, I worry Whitehat Hackers turning into Blackhat.

The network admins are directly responsible for the lack of prevention. Their incompetence or laziness is directly responsible and should by an offence under law.

@unnamedchannel1237

5 ай бұрын

This is a little harsh . Often IT and network admins are over worked and under resourced . Just not enough time to go through what needs to be done . IT is generally the last thing thought of in a company and therefore generally speaking from my experience the least resourced.

@tfsupp

5 ай бұрын

@@unnamedchannel1237 in my experience (lots of it) so badly organised and if the problems were properly fixed not just patched and wait to see what happens then the problems stack up. Any other industry it would be unacceptable. The entire industry culture would not be acceptable in any other industry.

My Son and DON'T do this 😢 people are sick! Liars dignity is priceless ❤😂

and companies should encrypt all user data

What's wrong with knowing what's wrong with people