[LINK] Major cyber attack on Australian governments and business
Stephen Loosley
stephenloosley at outlook.com
Fri Jun 19 17:02:57 AEST 2020
Kim writes,
> Yeah, it's been going on for a long time now. The announcement
> today is more likely a distraction from other things the LNP don't
> want you thinking about.
Yes, apparently later on his office said, “there was no specific incident this week and that the concerns were about a growing trend over recent months. Mr Morrison used a prepared statement to say that Australian governments and businesses were "currently being targeted" but this was a reference to the broader trend.
The Australian Signals Directorate said it was aware of the "sustained targeting of Australian governments and companies by a sophisticated state-based actor". The actor has been identified leveraging a number of initial access vectors, with the most prevalent being the exploitation of public-facing infrastructure," the intelligence organisation said.
The ACSC named "copy-paste compromises" as part of the state-based actor's "heavy use of proof-of-concept exploit code, web shells and other tools" to enable the attacks.
Defence Minister Linda Reynolds said companies should "patch" their internet-facing devices promptly to make sure any web or email servers are fully updated with the latest software and ensure they used multi-factor authentication to secure any internet access.
Former National Cyber Security Adviser Alastair MacGibbon said the threat was "likely a campaign by a sophisticated state-based actor" and part of a wider trend.
Ref: https://www.smh.com.au/politics/federal/morrison-reveals-malicious-state-based-cyber-attack-hitting-several-sectors-20200619-p5545z.html
More information about the Link
mailing list