Australia’s securities regulator says server hit by cybersecurity breach

Australia’s securities regulator says server hit by cybersecurity breach

Australia’s securities regulator has confirmed a cybersecurity breach at a server it used to transfer files including credit licence applications where some information may have been viewed.

Australia’s securities regulator has confirmed a cybersecurity breach at a server it used to transfer files including credit licence applications where some information may have been viewed.

The Australian Securities and Investment Commission (ASIC) said it became aware of the incident although it does not appear the credit licence forms or attachments were downloaded. 

In a statement, the regulator said: “While the investigation is ongoing, it appears that there is some risk that some limited information may have been viewed by the threat actor.”

Javvad Malik, Security Awareness Advocate at KnowBe4, said: “The breach is a good reminder that all organisations need to have good monitoring and threat detection controls in place so that any intrusion can be quickly detected and responded to. 

“Having strong security controls is not optional for any organisation, regardless of size, vertical, or type of data. If any system is accessible, it will be targeted. Therefore, it’s important that cybersecurity is embedded within the culture of an organisation through all systems, processes, and employees.”

Sam Curry, Chief Security Officer, Cybereason, said: “Discovery of the breach at ASIC is a reminder that there is no such thing as anyone being above an attack. 

“Details matter. Transparency matters. Process, clarity and putting those at risk first matter the most.”

Click below to share this article

Browse our latest issue

Intelligent CIO APAC

View Magazine Archive