Mr Longo said boards of directors generally understood cyber was a risk, but the challenge was determining what was an appropriate level of investment to minimise the risk of an intrusion.
“That will vary with the size of the business, the nature of the business, what advice they’re getting about the systems they should have in place,” he said.
Mr Longo said ASIC could not pre-emptively tell a company the investments they needed to make.
“If things go wrong, ASIC will be looking for whether they took reasonable steps and made reasonable investments proportionate to the risks that their business poses to defend themselves from this kind of attack,” he said.
Mr Longo signalled there was no imminent action planned against the directors of Optus and Medibank Private.
“I think at this stage the major priority has to be to encourage boards and to remind them of the obligations in this area,” he said.
The Federal Court last year ruled that RI Advice, a financial planning licensee formerly owned by ANZ and now part of Insignia Financial, breached the financial licence law by failing to protect against nine cyberattacks that put confidential client data at risk.
“It’s a condition of your licence to have systems and processes to deal with this risk,” Mr Longo said.
The court found RI Advice had a number of inadequate risk management practices across its network, including some of its authorised representatives failing to have up-to-date antivirus software, system backups, email filtering or quarantining, and poor password practices.
Inadequacies in its cybersecurity risk management led to a number of cyber incidents affecting clients in the six-year period to May 2020.
In her judgment, Justice Helen Rofe made it clear that cybersecurity should be front of mind for all AFS licensees.
She acknowledged that while ‘[i]t is not possible to reduce cybersecurity risk to zero … it is possible to materially reduce cybersecurity risk through adequate cybersecurity documentation and controls…’
There has been a surge in the number of data breaches that have garnered public attention since last year. As well as Optus and Medibank, companies including Vinomofo, MyDeal, Australian Clinical Labs, and another local Singtel subsidiary, Dialog, have also revealed they have suffered breaches of varying levels of complexity.
ASIC is not the primary cyber regulator.
The federal government’s Australian Cyber Security Centre, based within the Australian Signals Directorate, provides advice and information about how to protect businesses online and provides advice to individuals, businesses and critical infrastructure operators when there is a cyber incident.
The Australian Cyber Security Centre received more than 76,000 cybercrime reports in 2020-21.
The centre reported a rise in the average cost per cybercrime report to more than $39,000 for small businesses and $88,000 for medium-sized businesses.
Note: This article have been indexed to our site. We do not claim legitimacy, ownership or copyright of any of the content above. To see the article at original source Click Here
Anker Laptop Charger, 140W USB-C Charger, 4-Port Multi-Device Fast Charging, Advanced GaN Power Adapter, Intuitive Touch Controls, for MacBook, iPhone 16 Series, Samsung Galaxy, Pixel, and More
$89.99 (as of February 22, 2025 19:36 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
LEGO Creator 3 in 1 Wild Animals Surprising Spider Toy - Building Toy with 3 Build Options, Spider, Scorpion, or Snake - Animal Figures for Kids, Boys & Girls, Ages 7+ - Gift Idea for Birthday - 31159
$22.99 (as of February 22, 2025 19:36 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Magic: The Gathering Tarkir: Dragonstorm - Collector Booster Box (12 Packs)
$299.88 (as of February 22, 2025 19:36 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Muddy Mat® Original Dog Door Mat for Muddy Paws, Super Absorbent Microfiber, Non-Slip Washable Pet Rug, Quick Dry Chenille Entryway Carpet, Machine Washable Indoor Outdoor mat, Army Green 18"x28"
$24.95 (as of February 23, 2025 19:40 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
