Australian Government Suffers A Widespread Ransom Attack

Uploaded on 2023-09-21 in TECHNOLOGY--Hackers, GOVERNMENT-National, FREE TO VIEW

Multiple departments and agencies of the Australian government are victims of the cyber attack. In a recent speech Air Marshal and National Cybler Security coordinator, Darren Goldie confirmed that a total 65 agencies had been caught up in the incident.

It is now reported that The Russian ransomware group ALPHV, also known as BlackCat, hacked the commercial law firm, HWL Ebsworth, that operates throughout Australia in April 2023, stealing 3.6TB of confidential data the firm held on behalf of private sector clients as well as a large number oof governmental organisations. It is these that have now been affected. 

ALPHV are the perpetrators of a large-scale ransom attack on major US Casino operators MGMGrand and Caesars Palace. 

ALPHV was one of the top three ransomware groups targeting Australia, according to a recent study by cybersecurity firm Palo Alto Networks. Goldie said that individual agencies would continue to assist affected clients and the investigations under way by the Australian federal police and Victoria police would continue that some clients of the law firm with personal information exposed in the hack have yet to be informed.

Goldie also revealed he had delayed informing the public quickly to avoid sparking anxiety in those potentially affected. He also confirmed the Australian federal police and the Department of Home Affairs were victims of the hack, while also being agencies responsible for investigating it.

When hackers exposed the passports, licenses and medical ID cards of 9.8 million current and former clients of Australian mobile-phone operator Optus last year, the company commissioned Deloitte to review what went wrong. The ALPHV group is typically paid to hack others and has been active since late 2021 and the cyber security company Sophos said the group has consistently targeted large organisations.

Ground News:   HWL Ebsworth:     CSO Online:    Bloomberg:   TEISS:   BankInfoSecurity:   Guardian

Image. Thitima Thongkham

You Might Also Read: 

Seiko Attacked By BlackCat:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

 

« Chinese Hackers Have Been Reading US Government Emails
Exploring How Generative AI Is Contributing To Cybersecurity Threats & Risks »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

AlgoSec

AlgoSec

The AlgoSec platform enables the world’s most complex organizations to gain visibility, reduce risk and process changes at zero-touch across the hybrid network.

SiteGuarding

SiteGuarding

SiteGuarding provide website security tools and services to protect your website against malware and hacker exploits.

ClearDATA

ClearDATA

The ClearDATA Managed Cloud protects sensitive healthcare data using purpose-built DevOps automation, compliance and security safeguards, and healthcare expertise.

Hypori

Hypori

Hypori is a virtual smartphone solution that makes truly secure BYOD a reality for organizations in healthcare, finance, government, and beyond.

Exein

Exein

Exein are on a mission to build the world’s first ecosystem for firmware security so that all different types of firmware are secure around the world.

Identity Defined Security Alliance (IDSA)

Identity Defined Security Alliance (IDSA)

IDSA is a group of identity and security vendors, solution providers and practitioners that acts as an independent source of education and information on identity-centric security strategies.

New Net Technologies (NNT)

New Net Technologies (NNT)

NNT SecureOps provides ultimate protection against all forms of cyberattack and data breaches by automating the essential security controls.

Beyond Encryption

Beyond Encryption

Mailock by Beyond Encryption is a secure email solution that allows businesses to exchange email securely, safe in the knowledge that their email can only be read by their intended recipient.

Internet Crime Complaint Center (IC3)

Internet Crime Complaint Center (IC3)

The Internet Crime Complaint Center provide the public with a reporting mechanism to submit information to the FBI concerning suspected Internet-facilitated criminal activity.

Cybots

Cybots

Cybots is a multinational cyber defence brand founded in Singapore in 2018 to help organizations stay ahead of increasingly sophisticated threats from cyber criminals.

AirEye

AirEye

AirEye is a leader in Network Airspace Protection (NAP). Block attacks against your corporate network launched from wireless devices in your corporate network airspace.

PSafe

PSafe

PSafe is a leading provider of mobile privacy, security, and performance apps. We deliver innovative products that protect your freedom to safely connect, share, play, express and explore online.

Dawgen Global

Dawgen Global

Dawgen Global is an integrated multidisciplinary professional service firm in the Caribbean Region providing a range of services including Risk Management and Information Systems Assurance.

Zilla Security

Zilla Security

Zilla combines identity governance with cloud security to deliver comprehensive access visibility, reviews, lifecycle management, and policy-based security remediation.

Telindus

Telindus

Telindus is the strategic IT partner for the flexible organization of the future. We build optimal IT infrastructure with four components: networking, cloud, cybersecurity and data & AI.

Command Zero

Command Zero

Command Zero is the industry’s first autonomous and AI-assisted cyber investigations platform, built to transform security operations in complex enterprise environments.