Australia’s Cybersecurity Adviser Calls For Privacy

The Australian government's national cybersecurity adviser has urged social media companies to improve the way they treat personal data and encouraged users of those platforms to be more aware of what information they are offering up to the Internet.

Amid the heightened debate around the use of personal data online, Alastair MacGibbon, who heads the Australian Cyber Security Centre, also suggested companies like Facebook were being hypocritical when governments seek their assistance with criminal investigations.

"These same companies that have allowed tens of millions of accounts to go at the back end out of their control will say to us often, 'look we’re not going to help you' or 'we can’t help you' or 'you’re overreaching as a government', even though you have court orders and a really strong, compelling case because we need to protect the privacy of their customers," Mr MacGibbon told Sky News.

"These companies that hold up privacy and the sanctity of the individual to us as governments, western, liberal, democratic governments, are the same ones that are then allowing data at the back end to go off out of their control."

He said the companies' treatment of personal data should become more mature to comply with community expectations. He also reminded people that, "we are their product, our data is their product" when these services are free.

"That’s what everyone needs to remember in this discussion. Is that our data, as we used those services, is used primarily to market but the events this week highlight that sometimes there can a darker side," Mr MacGibbon said.

Following revelations concerning data science firm Cambridge Analytica's inappropriate harvesting of Facebook users' data and involvement in political campaigns around the world, the companies are now facing inquiries in multiple countries and the prospect of tighter regulation.

The controversy has also triggered debate around the use of data in politics, with former federal privacy commissioner Malcolm Crompton criticising Australia's major political parties, who enjoy an exemption from the Privacy Act.

Fairfax Media revealed that Facebook approached the major parties with an advanced data-matching tool in the lead-up to the 2016 election, an offer the Liberal Party declined out of concern it could breach electoral laws.

Political parties are exempt from the Privacy Act that governs the data collection, use and disclosure for almost all other private organisations. The exemption is designed to "encourage freedom of political communication" and support the electoral process, according to Attorney-General Christian Porter.

Mr Crompton said the parties "don't have a leg to stand on" and should adhere to the same practices and principles that others face, which would make their data collection more accurate and transparent.

Labor is understood to have adopted Facebook's "Custom Audience" feature and has advanced digital campaigning capabilities while the South Australian and Victorian Liberal Party branches are using data-driven micro-targeting service i360.

Data long collected by political parties, from the electoral roll, direct contact and publicly available statements, is now being combined with social media, deployed in increasingly advanced ways online and refining the more traditional methods of door-knocking, phone calls and direct mail.

Cambridge Analytica, notorious for its involvement in the 2016 US election, has made attempts to expand into Australia but the major parties have declined to take up their services.

Sydney Morning Herald

You Might Also Read: 

Australia To Challenge Facebook & Google Over Media Disruption:

 
« The Pentagon Is Busy Integrating Cyber Into Its Battle Plans
Snowden: The Deep State’s Influence On The Presidency »

CyberSecurity Jobsite
Check Point

Directory of Suppliers

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Venafi

Venafi

Venafi is a world-class cyber-security company dedicated to protecting machine identities for our hyper-connected digital economy.

KELA

KELA

KELA's powerful cybercrime intelligence platform uncovers and neutralizes the most relevant cybersecurity threats coming from the hardest-to-reach places on the internet.

SynerComm

SynerComm

SynerComm is an IT solution provider specializing in network and security infrastructure, enterprise mobility, remote access, wireless solutions, audit, pentesting and information assurance.

LinOTP

LinOTP

LinOTP is an enterprise level, innovative, flexible and versatile OTP-platform for strong authentication.

ICT Reverse

ICT Reverse

ICT Reverse is one of the UK’s leading, fully accredited providers of ICT asset disposal and secure data erasure.

Citalid

Citalid

The Citalid cyber risk management platform combines threat and business intelligence to identify the risks scenarios you face.

Wolverhampton Cyber Research Institute (WCRI)

Wolverhampton Cyber Research Institute (WCRI)

Wolverhampton Cyber Research Institute builds on the strength of its members in the area of network and communication security, artificial intelligence, big data and cyber physical systems.

Control System Cyber Security Association International (CS2AI)

Control System Cyber Security Association International (CS2AI)

CS2AI is the premier global not for profit workforce development organization supporting professionals of all levels charged with securing control systems.

Prancer

Prancer

Prancer is the industry's first cloud-native, self-service SAAS platform for automated security validation and penetration testing in the cloud.

Nudge Security

Nudge Security

Nudge Security offer the world's first-ever SaaS security solution to discover shadow IT and curb SaaS sprawl across any device or location and nudges employees towards optimal security behavior.

Third Point Ventures

Third Point Ventures

Third Point brings deep technical expertise, a strong network of relationships, and decades of investing experience to add value to our partners throughout their journey from idea to IPO and beyond.

Oort

Oort

Oort is an identity threat detection and response platform for enterprise security. The Oort platform is API-driven, cloud-native and agentless for rapid time to value and high scalability.

Armata Cyber Security

Armata Cyber Security

Armata exists to bring Cyber Security to all people – from home users and SMBs to large enterprises. We believe all users have the right to an affordable yet effective Cyber Security solution.

Bitdefender Voyager Ventures (BVV)

Bitdefender Voyager Ventures (BVV)

Bitdefender Voyager Ventures is an early-stage investment vehicle focused on cybersecurity, data analytics and automation startups.

RAD Security

RAD Security

RAD Security (formerly KSOC) is a cloud native security company that empowers engineering and security teams to drive innovation so they can focus on growth versus security problems.

DarkHorse Security

DarkHorse Security

DarkHorse exists to make it easy and affordable for organizations to be able to identify their cybersecurity vulnerabilities.