Critical infrastructure security legislation amendment: Here’s what your business needs to do
Recently, Australia’s critical infrastructure has been hit hard by a surge of cyber attacks, culminating in a record 4500 hacking attempts in just one day. The Annual ACSC Cyber Threat Report revealed that the hardest hit sectors during the 2019 to 2020 financial year included government (commonwealth and state/territory), health, education, finance, and IT.
The reported data accords with the government’s own public pronouncements. Everyone remembers the Prime Minister’s announcement of a months-long campaign of cyber attacks, state-backed and wide-ranging, covering all levels of government in addition to essential services and businesses.
Nor did the attacks themselves stop. Later, Defence Minister Linda Reynolds decried a “new normal” of persistent cyber attacks on Australian targets, effectively blurring the lines between “peace and war.”
What leaders need to know about the government’s response plan
The government has reacted in kind, first releasing Australia’s Cyber Security Strategy 2020, an update to the 2016 version. The 2020 strategy laid out what the government considers its own responsibilities and those of Australian businesses in ensuring a baseline of cyber resilience across the economy.