独家
澳大利亚人恐惧为黑客窃取个人隐私数据
艾玛是黑客健康保险公司近1000万名澳大利亚人的影响的一系列引人注目的网络攻击,加快政府改革的努力隐私法和迫使企业采取更多的措施保护他们的客户数据。
-
BSNL名字六个官员被迫退休
强制退休的军官派是印度电信服务(其)干部分批从1988年到1992年。
-
-
-
墨尔本:艾玛时,一个律师,发现她的精神健康问题的细节在一个巨大的突破网络攻击在澳大利亚最大的私人健康保险公司,她担心可能会危及她的职业生涯。
艾玛是近1000万澳大利亚人的影响黑客健康保险公司之一,一系列引人注目的网络攻击,加快政府改革的努力隐私法和迫使企业采取更多措施,保护他们的客户数据。
要求赎金后,黑客,警方说,俄罗斯网络罪犯——发表1600多敏感的病人黑暗web上的文件。
“我是非常痛苦的,因为它影响我的能力回到工作如果他们透露的信息我的精神疾病,”艾玛说,患有重度抑郁症和慢性创伤后应激障碍(PTSD), 2021年12月以来,下班生病。
她过去主张有关的数据和诊断,黑客把她的名字,出生日期,地址、电话号码和电子邮件地址。
数据泄露,敏感,保护或复制机密数据,查看、被盗或被人不授权,一直在增加更多的数据捕获和存储的全球政府和企业。
澳大利亚政府已承诺“追捕”网络罪犯,宣布了一个新的工作组的约100名联邦警察和澳大利亚信号理事会的工作是“黑客攻击”。
本周议会还通过了一项法案修改1988年的国家的隐私法案,增加严重或重复侵权行为的处罚企业面临客户的隐私。
数据收集范围
健康保险公司数据的黑客仅仅几个星期之前,澳都斯,澳大利亚第二大电信公司披露个人数据的攻击1000万账户。澳洲电信美国最大的电信公司,还说,受到“小数据泄露”。
而修改隐私法案是一个“正面”的举动,它低于“根本转变”,需要限制收集的数据量,大卫·林赛说悉尼科技大学的教授。
“增加处罚显然是一个权宜之计。它不会解决问题数据隐私政权无可救药地过时了”,他说。
他呼吁“严重的实现数据最小化原则”,以确保收集的个人资料仅当它直接相关和必要的。
人们也应该有权利拥有自己的个人信息删除,特别是当他们不再是顾客,林赛补充道。
目前,没有限制公司在澳大利亚多长时间可以留住客户数据。这受到审查后,最近的违反,受害者抱怨他们的数据一直保持即使他们没有客户多年。
在艾玛的情况下,数据属于她的家庭成员,包括她的继父,几年前他选择了自杀,黑客也被偷了。
“所有这些信息可能是由黑客…他没有健康保险公司的客户多年。它只是非常痛苦,”她说。
受到虐待的
网络攻击对澳大利亚的罪犯和国家资助的团体跳在过去的财政年度,每七分钟攻击报道,本月早些时候公布的一份政府报告显示。
澳大利亚网络安全中心收到76000网络犯罪去年财政年度报告,从前期上涨13%,根据年度网络威胁报告,大多数主要事件归咎于软件更新不足。
这是更有理由限制个人信息的收集和它可以保存的时间,说Niloufer Selvadurai,麦格理大学的法律教授。
“如果我们可以限制个人信息的收集,我们可以减少数据泄露的影响的大小,这是很不可避免的,”她说。
隐私法案允许公司收集个人信息时“合理必要的”,但Selvadurai说定义过于宽泛,使它容易受到数据收集器的滥用。
“(但)很好,至少现在看到这些对话开始,”她补充道。
不过,反对派议员批评政府通过的法案前两年审查到隐私法的总检察长办公室于今年年底到期,这将包括对提高数据保护的建议。
艾玛,保护隐私的措施太迟了。
破解“retraumatised”她,她说,让她担心被贬如果她的同事们发现了她的心理斗争。
她也担心有人会试图勒索她健康声明数据,并怀疑改革计划能防止未来的违反。
“目前,这似乎有点混战,”她说。
“感觉是可怕的,感觉有人非常私人的信息我,我没有控制它。”
![\"Australians](\"https:\/\/st.etb2bimg.com\/Themes\/Release\/images\/responsive\/ettelecom-default.jpg\")
<\/figure>By Seb Starcevic<\/strong>
MELBOURNE: When Emma, a lawyer, found out that details of her mental health problems had been breached in a massive cyberattack<\/a> on Australia's largest private health insurer, she feared her career could be jeopardised.
Emma was among nearly 10 million Australians affected by the Medibank hack<\/a>, one of a series of high-profile cyberattacks that have accelerated government efforts to overhaul privacy laws and force companies to do more to protect their customers' data.
After demanding a ransom, the hackers - who police say were Russian cyber criminals - published more than 1,600 sensitive patient files on the dark web.
<\/div><\/div>\"It's upsetting for me to know that data about my health could be out there on the internet<\/a>,\" Emma, 41, told the Thomson Reuters Foundation, asking to be identified only by her first name.
\"I was really quite distressed because it affects my ability to go back to work if they reveal information about my mental illness,\" said Emma, who suffers from major depressive disorder and chronic post-traumatic stress disorder (PTSD), and has been off work sick since December 2021.
Along with data related to her past claims and diagnoses, the hackers took her name, date of birth, address, phone number and email address.
Data breaches, in which sensitive, protected or confidential data is copied, viewed, stolen or used by someone who is not authorised to do so, have been on the rise as more data is captured and stored by governments and corporations worldwide.
Australia's government has pledged to \"hunt down\" the cyber criminals, announcing a new taskforce of about 100 officers from the federal police and the Australian Signals Directorate whose job is to \"hack the hackers\".
Parliament this week also passed a bill to amend the country's Privacy Act of 1988, increasing the penalties companies face for serious or repeated infringements of customers' privacy.
\"I was really quite distressed because it affects my ability to go back to work if they reveal information about my mental illness,\" said Emma, who suffers from major depressive disorder and chronic post-traumatic stress disorder (PTSD), and has been off work sick since December 2021.
Along with data related to her past claims and diagnoses, the hackers took her name, date of birth, address, phone number and email address.
Data breaches, in which sensitive, protected or confidential data is copied, viewed, stolen or used by someone who is not authorised to do so, have been on the rise as more data is captured and stored by governments and corporations worldwide.
Australia's government has pledged to \"hunt down\" the cyber criminals, announcing a new taskforce of about 100 officers from the federal police and the Australian Signals Directorate whose job is to \"hack the hackers\".
Parliament this week also passed a bill to amend the country's Privacy Act of 1988, increasing the penalties companies face for serious or repeated infringements of customers' privacy.
<\/div><\/div>Medibank, which refused to pay a ransom to the hackers, said it was continuously monitoring its network for any suspicious activity, and had added \"detection and forensics capability\" across its systems to prevent further incidents.
DATA COLLECTION LIMITS
<\/strong>
The hack of Medibank data came just weeks after Optus, Australia's second-largest telecoms company, disclosed a hack of personal data from up to 10 million accounts. Telstra<\/a>, the nation's largest telecoms firm, also said it was hit by a \"small data breach\".
While the amended privacy legislation is a \"positive\" move, it falls short of a \"fundamental paradigm shift\" that is needed to limit the amount of data collected, said David Lindsay, a professor at the University of Technology Sydney.
\"Increasing penalties is obviously a stop-gap measure. It will not address the problems associated with a data privacy<\/a> regime that is hopelessly out-of-date,\" he said.
He called for \"serious implementation of the data minimisation principle\" to ensure personal data is only collected when it is directly relevant and necessary.
People should also have the right to have their personal information deleted, especially when they cease to be customers, Lindsay added.
Currently, there is no limit on how long companies in Australia can retain customer data. This has come under scrutiny in the wake of the recent breaches, with victims complaining that their data had been kept even though they had not been customers for years.
In Emma's case, data belonging to her family members - including her stepfather, who took his own life several years ago - was also stolen in the hack.
\"All that information is potentially held by the hackers ... and he hadn't been a customer of Medibank for years. It's just very distressing,\" she said.
'VULNERABLE TO ABUSE'
<\/strong>
Cyberattacks against Australia by criminals and state-sponsored groups jumped during the last financial year, with one attack reported every seven minutes, according to a government report released earlier this month.
The Australian Cyber Security<\/a> Centre received 76,000 cybercrime reports last financial year, up 13% from the previous period, according to its annual cyber threat report, which blamed most major incidents on inadequate software updates.
This is all the more reason to limit the collection of personal information and the duration for which it can be kept, said Niloufer Selvadurai, a professor of technology law at Macquarie University.
\"If we can limit the collection of personal information, we can lessen the magnitude of the effects of a data breach, which is pretty well inevitable,\" she said.
The Privacy Act allows companies to collect personal information when it is \"reasonably necessary\", but Selvadurai said that definition was too broad, making it \"vulnerable to abuse by data collectors\".
\"(But) it's good at least to see that these conversations are starting now,\" she added.
Still, opposition lawmakers have criticised the government for passing the bill before a two-year review into the Privacy Act by the Attorney-General's office due by the end of the year, which will include recommendations for boosting data protection.
For Emma, the moves to protect privacy are too late.
The hack had \"retraumatised\" her, she said, and made her fear being stigmatised if her colleagues found out about her mental health struggles.
She is also worried that someone might attempt to blackmail her with her health claims data, and is sceptical that the planned reforms will do much to prevent future breaches.
\"At the moment, it seems like it's a bit of a free-for-all,\" she said.
\"The feeling is horrible, the feeling that somebody has that very private information about me and I've got no control over it.\"
<\/div><\/div>
DATA COLLECTION LIMITS
<\/strong>
The hack of Medibank data came just weeks after Optus, Australia's second-largest telecoms company, disclosed a hack of personal data from up to 10 million accounts. Telstra<\/a>, the nation's largest telecoms firm, also said it was hit by a \"small data breach\".
While the amended privacy legislation is a \"positive\" move, it falls short of a \"fundamental paradigm shift\" that is needed to limit the amount of data collected, said David Lindsay, a professor at the University of Technology Sydney.
\"Increasing penalties is obviously a stop-gap measure. It will not address the problems associated with a data privacy<\/a> regime that is hopelessly out-of-date,\" he said.
He called for \"serious implementation of the data minimisation principle\" to ensure personal data is only collected when it is directly relevant and necessary.
People should also have the right to have their personal information deleted, especially when they cease to be customers, Lindsay added.
Currently, there is no limit on how long companies in Australia can retain customer data. This has come under scrutiny in the wake of the recent breaches, with victims complaining that their data had been kept even though they had not been customers for years.
In Emma's case, data belonging to her family members - including her stepfather, who took his own life several years ago - was also stolen in the hack.
\"All that information is potentially held by the hackers ... and he hadn't been a customer of Medibank for years. It's just very distressing,\" she said.
'VULNERABLE TO ABUSE'
<\/strong>
Cyberattacks against Australia by criminals and state-sponsored groups jumped during the last financial year, with one attack reported every seven minutes, according to a government report released earlier this month.
The Australian Cyber Security<\/a> Centre received 76,000 cybercrime reports last financial year, up 13% from the previous period, according to its annual cyber threat report, which blamed most major incidents on inadequate software updates.
This is all the more reason to limit the collection of personal information and the duration for which it can be kept, said Niloufer Selvadurai, a professor of technology law at Macquarie University.
\"If we can limit the collection of personal information, we can lessen the magnitude of the effects of a data breach, which is pretty well inevitable,\" she said.
The Privacy Act allows companies to collect personal information when it is \"reasonably necessary\", but Selvadurai said that definition was too broad, making it \"vulnerable to abuse by data collectors\".
\"(But) it's good at least to see that these conversations are starting now,\" she added.
Still, opposition lawmakers have criticised the government for passing the bill before a two-year review into the Privacy Act by the Attorney-General's office due by the end of the year, which will include recommendations for boosting data protection.
For Emma, the moves to protect privacy are too late.
The hack had \"retraumatised\" her, she said, and made her fear being stigmatised if her colleagues found out about her mental health struggles.
She is also worried that someone might attempt to blackmail her with her health claims data, and is sceptical that the planned reforms will do much to prevent future breaches.
\"At the moment, it seems like it's a bit of a free-for-all,\" she said.
\"The feeling is horrible, the feeling that somebody has that very private information about me and I've got no control over it.\"
<\/div><\/div>
Follow and connect with us on Twitter<\/a>, Facebook<\/a>, Linkedin<\/a>, Youtube<\/a><\/div>","NumberOfSentences":{"minfo":"36.0","minfoseo":"36-0"},"AutomatedReadabilityIndex":{"minfo":"14.0","minfoseo":"14-0"},"LastPublishMilliTime":{"minfo":"1669789155205","minfoseo":"1669789155205"},"ReadabilityGradeLevel":{"minfo":"College","minfoseo":"college"},"HashCode":{"minfo":"-899882436","minfoseo":"-899882436"},"latestnewsflag":{"minfo":"1.0","minfoseo":"1-0"},"NumberOfCharacters":{"minfo":"5702.0","minfoseo":"5702-0"},"NumberOfWords":{"minfo":"906.0","minfoseo":"906-0"},"key":{"0":{"keyid":"15657311","value":"medibank hack","smid":"0","keynameseo":"medibank-hack","keytype":"","keycount":"totalcount","weightage":"100"},"1":{"keyid":"29409","value":"cyber crime","smid":"0","keynameseo":"cyber-crime","keytype":"","keycount":"totalcount","weightage":"90"},"2":{"keyid":"181047","value":"Telstra","smid":"0","keynameseo":"Telstra","keytype":"","keycount":"totalcount","weightage":"20"},"3":{"keyid":"149953","value":"privacy rights","smid":"0","keynameseo":"privacy-rights","keytype":"","keycount":"totalcount","weightage":"20"},"5":{"keyid":"803848","value":"data privacy","smid":"0","keynameseo":"data-privacy","keytype":"","keycount":"totalcount","weightage":"20"},"6":{"keyid":"6361937","value":"cyberattack","smid":"0","keynameseo":"cyberattack","keytype":"","keycount":"totalcount","weightage":"20"},"7":{"keyid":"137092","value":"cyber security","smid":"0","keynameseo":"cyber-security","keytype":"","keycount":"totalcount","weightage":"20"},"8":{"keyid":"10212088","value":"customer data breach","smid":"0","keynameseo":"customer-data-breach","keytype":"","keycount":"totalcount","weightage":"20"}},"authorsplit":[],"similarlytagged":[{"msid":"95875155","stname":"Australians fear for privacy as hackers steal personal data","artsyn":"Emma was among nearly 10 million Australians affected by the Medibank hack, one of a series of high-profile cyberattacks that have accelerated government efforts to overhaul privacy laws and force companies to do more to protect their customers' data.","seolocation":"telecomnews\/australians-fear-for-privacy-as-hackers-steal-personal-data","seolocationalt":"Australians fear for privacy as hackers steal personal data","url_seo":"australians-fear-for-privacy-as-hackers-steal-personal-data"}],"primeid":0,"storytags":{"categoryTag":{"sectionid":"49830939","sectionname":"TelecomNews","seolocation":"telecomnews","seolocationalt":"telecomnews"},"otherTags":[{"keyid":"15657311","value":"medibank hack","smid":"0","keynameseo":"medibank-hack","keytype":"","keycount":"totalcount","weightage":"100"},{"keyid":"29409","value":"cyber crime","smid":"0","keynameseo":"cyber-crime","keytype":"","keycount":"totalcount","weightage":"90"},{"keyid":"181047","value":"Telstra","smid":"0","keynameseo":"Telstra","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"149953","value":"privacy rights","smid":"0","keynameseo":"privacy-rights","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"6357247","value":"internet","smid":"0","keynameseo":"internet","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"803848","value":"data privacy","smid":"0","keynameseo":"data-privacy","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"6361937","value":"cyberattack","smid":"0","keynameseo":"cyberattack","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"137092","value":"cyber security","smid":"0","keynameseo":"cyber-security","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"10212088","value":"customer data breach","smid":"0","keynameseo":"customer-data-breach","keytype":"","keycount":"totalcount","weightage":"20"}],"filterTags":[]},"formattedTags":{"companyTags":[],"otherTags":[{"name":"customer data breach"},{"name":"privacy rights"},{"name":"cyber security"},{"name":"medibank hack"},{"name":"data privacy"},{"name":"cyber crime"},{"name":"cyberattack"},{"name":"internet"},{"name":"Telstra"}],"newsCategoryTags":[{"name":"TelecomNews","seolocation":"telecomnews"}],"breadcrumbTags":["medibank hack","cyber crime","Telstra","privacy rights","internet","data privacy","cyberattack","cyber security","customer data breach"],"filterTags":[]},"breadcrumbTags":["medibank hack","cyber crime","Telstra","privacy rights","internet","data privacy","cyberattack","cyber security","customer data breach"],"Alttitle":{"minfo":""},"Altdescription":{"minfo":""},"amp_url":"\/\/www.iser-br.com\/amp\/news\/australians-fear-for-privacy-as-hackers-steal-personal-data\/95875155","associated":{"articles":{"95875155":{"msid":"95875155","stname":"Australians fear for privacy as hackers steal personal data","artsyn":"Emma was among nearly 10 million Australians affected by the Medibank hack, one of a series of high-profile cyberattacks that have accelerated government efforts to overhaul privacy laws and force companies to do more to protect their customers' data.","seolocation":"telecomnews\/australians-fear-for-privacy-as-hackers-steal-personal-data","seolocationalt":"Australians fear for privacy as hackers steal personal data","url_seo":"australians-fear-for-privacy-as-hackers-steal-personal-data"}}}}" data-news-images="[{"msid":"95875704","msname":"cyber_crime","msnameseo":"cyber_crime","mediatype":"21","artdate":"2022-10-25 07:05:00.0","caption":""}]" data-newsletter-by="0" data-newsletter-date="a" data-hasbottomcarousel="" data-alldetailsopen="0" data-multipleanalyticshit="" data-deeplink="https://ettelecom.app.link?$deeplink_path=" data-socialshareformat="default">
