Australia’s Cybersecurity Adviser Calls For Privacy

The Australian government's national cybersecurity adviser has urged social media companies to improve the way they treat personal data and encouraged users of those platforms to be more aware of what information they are offering up to the Internet.

Amid the heightened debate around the use of personal data online, Alastair MacGibbon, who heads the Australian Cyber Security Centre, also suggested companies like Facebook were being hypocritical when governments seek their assistance with criminal investigations.

"These same companies that have allowed tens of millions of accounts to go at the back end out of their control will say to us often, 'look we’re not going to help you' or 'we can’t help you' or 'you’re overreaching as a government', even though you have court orders and a really strong, compelling case because we need to protect the privacy of their customers," Mr MacGibbon told Sky News.

"These companies that hold up privacy and the sanctity of the individual to us as governments, western, liberal, democratic governments, are the same ones that are then allowing data at the back end to go off out of their control."

He said the companies' treatment of personal data should become more mature to comply with community expectations. He also reminded people that, "we are their product, our data is their product" when these services are free.

"That’s what everyone needs to remember in this discussion. Is that our data, as we used those services, is used primarily to market but the events this week highlight that sometimes there can a darker side," Mr MacGibbon said.

Following revelations concerning data science firm Cambridge Analytica's inappropriate harvesting of Facebook users' data and involvement in political campaigns around the world, the companies are now facing inquiries in multiple countries and the prospect of tighter regulation.

The controversy has also triggered debate around the use of data in politics, with former federal privacy commissioner Malcolm Crompton criticising Australia's major political parties, who enjoy an exemption from the Privacy Act.

Fairfax Media revealed that Facebook approached the major parties with an advanced data-matching tool in the lead-up to the 2016 election, an offer the Liberal Party declined out of concern it could breach electoral laws.

Political parties are exempt from the Privacy Act that governs the data collection, use and disclosure for almost all other private organisations. The exemption is designed to "encourage freedom of political communication" and support the electoral process, according to Attorney-General Christian Porter.

Mr Crompton said the parties "don't have a leg to stand on" and should adhere to the same practices and principles that others face, which would make their data collection more accurate and transparent.

Labor is understood to have adopted Facebook's "Custom Audience" feature and has advanced digital campaigning capabilities while the South Australian and Victorian Liberal Party branches are using data-driven micro-targeting service i360.

Data long collected by political parties, from the electoral roll, direct contact and publicly available statements, is now being combined with social media, deployed in increasingly advanced ways online and refining the more traditional methods of door-knocking, phone calls and direct mail.

Cambridge Analytica, notorious for its involvement in the 2016 US election, has made attempts to expand into Australia but the major parties have declined to take up their services.

Sydney Morning Herald

You Might Also Read: 

Australia To Challenge Facebook & Google Over Media Disruption:

 
« The Pentagon Is Busy Integrating Cyber Into Its Battle Plans
Snowden: The Deep State’s Influence On The Presidency »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

ON-DEMAND WEBINAR: Harnessing the power of Security Information and Event Management (SIEM)

ON-DEMAND WEBINAR: Harnessing the power of Security Information and Event Management (SIEM)

Join our experts as they give the insights you need to power your Security Information and Event Management (SIEM).

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Social-Engineer Inc

Social-Engineer Inc

Social-Engineer is a consulting and training company specializing in the science of social engineering in the context of digital security.

Alert Logic

Alert Logic

Alert Logic delivers unrivaled security for any environment, delivering industry-leading managed detection and response (MDR) and web application firewall (WAF) solutions.

Redcentric

Redcentric

Redcentric is a leading UK IT managed services provider. We deliver managed IT, cloud computing, data backup, information security services and managed networks.

Junglemap

Junglemap

Junglemap provide nanolearning training courses on ransomware, information security and GDPR.

CIO Dive

CIO Dive

CIO Dive provides news and analysis for IT executives in areas including IT strategy, cloud computing, cyber security, big data, AI, software, infrastructure, dev ops and more.

Cycuity

Cycuity

Cycuity (formerly Tortuga Logic) is a cybersecurity company that is transforming the way we secure silicon with comprehensive hardware security assurance.

Cybertonica

Cybertonica

Cybertonica is a FinTech company which detects and prevents fraudulent transactions and reduces risk for financial services organisations.

GMV

GMV

GMV is a technological business group offering solutions, services and products in diverse sectors including Intelligent Transportation Systems, Cybersecurity, Telecoms and IT.

Document Security Systems (DSS)

Document Security Systems (DSS)

DSS anti-counterfeit, authentication, and brand protection solutions are deployed to prevent attacks which threaten products, digital presence, financial instruments, and identification.

ContraForce

ContraForce

ContraForce is a threat detection and response software providing complete visibility across cloud, network, endpoints, user, and email with the ability to target and block threats in real-time.

Strata Identity

Strata Identity

Strata is pioneering identity orchestration to unify on-premises and cloud-based authentication and access systems for consistent identity management in multi-cloud environments.

HEQA Security

HEQA Security

HEQA Security (formerly QuantLR) offer the world’s most cost-effective, easy-to-integrate, and secure Quantum Key Distribution (QKD) solution

Dawgen Global

Dawgen Global

Dawgen Global is an integrated multidisciplinary professional service firm in the Caribbean Region providing a range of services including Risk Management and Information Systems Assurance.

Buguard

Buguard

Buguard is a multi-award-winning supplier of Application Security Assessments and GRC services.

iomart Group

iomart Group

iomart is a cloud computing and IT managed services business providing secure hybrid cloud, network connectivity, data management, and digital workplace capability.

Vernetzen

Vernetzen

Vernetzen is an industrial network and cybersecurity innovator focused on delivering practical solutions to connect and secure industry across the globe.