AusPrivacy #5

AusPrivacy #5
Photo by Its me Pravin / Unsplash
Aus Gov to release credential misuse notifier app, Privacy Bill back in the news, big week for ransomware, and it's Dell's turn for a data leak.

In the news

New government app set to fight credential misuse
In an effort to thwart cyber criminals misusing stolen credentials, the government is preparing to launch a new app that notifies users when their details are being used by threat actors.

Our current privacy laws are very updated, looking forward to them screwing up the news ones.

Privacy bill to come before Parliament in August
Long-awaited reforms to Australia’s outdated privacy laws will be introduced to Parliament by the federal government in less than four months. Prime Minister Anthony Albanese announced the timeline last Wednesday, although limited his comments to the introduction of anti-doxxing laws -- a recent focus for the government -- in August. On Thursday, Attorney-General Mark Dreyfus said that legislation to “overhaul the Privacy Act and protect Australians from doxxing” would be introduced in August.
2024 Digital ID and Privacy Special Report Archives
How public servants and politicians need to strike the balance between offering citizens personalised government services and securing identifiable data.
China’s hackers targeted our MPs. We need to talk about this relationship | The Strategist
At least six Australian parliamentarians from both major parties have been targeted by Chinese state-sponsored hackers from the notorious APT31 group, the Inter-Parliamentary Alliance on China has announced. The revelation follows announcements by the alliance—an…
Monash Health caught up in ZircoDATA ransomware data breach
Domestic violence data exposed, as National Cyber Security Coordinator releases statement on ZircoDATA breach.
DragonForce ransomware gang posts nearly 300GB of data belonging to Aussizz Group
An Australian immigration consultancy has fallen victim to the DragonForce ransomware gang, with hundreds of student visa applications, passports, and more leaked online.
Australia sanctions second Russian cybercriminal
The Albanese government has deployed its autonomous cyber sanction powers for the second time, joining the United States and United Kingdom in imposing restrictions on another alleged Russian hacker. Senior leader of ransomware group LockBit, Dmitry Yuryevich Khoroshev, is now subject to financial sanctions and a travel ban. The restrictions, announced on Wednesday, mean it is now illegal to provide assets to, or use or deal with Mr Khoroshev’s assets. Mr Khoroshev was identified as a senior leader of LockBit by the Australian Signals Directorate (ASD) and the Australian Federal Police with support from international partners under Operation Cronos.
Exclusive: EMBARGO ransomware gang publishes Firstmac customer data
Firstmac’s hackers have published customer transaction details, addresses, loan data, and more, in a 500GB data leak.
Report: Australian businesses less likely to report ransomware attacks
One in 10 Australian organisations hit by ransomware attacks do not report the incident.
iTWire - Data of 49m Dell customers put up for sale on cyber crime forum
A member of BreachForums, a cyber crime forum, is offering customer and system information of 49 million Dell users, including some from Australia â€“ and using an advisory from the company to prove that the data offered for sale is genuine. The member, who goes by the moniker Menelik, said the d…

Around the world

I wish Proton would put up more of a fight. Tuta seems to fight these things first rather than just hand over the info.

Proton Mail Discloses User Data Leading to Arrest in Spain
Proton Mail came under scrutiny for its role in a legal request by the Spanish authorities leading to the identification and arrest of a user.

Self Hosted

Missed this one last week.

Bitwarden just launched a new authenticator app. Here’s what it means to users. | Bitwarden Blog
Storing 2FA codes is just the beginning. Bitwarden aims to add defense in depth to authentication.
Now available: Passkeys go mobile! | Bitwarden Blog
Passkey management has come to Bitwarden Password Manager mobile apps, bringing the convenience of synced vaults to the powerful security of passkeys so you can use passkeys anywhere you go.
Got any ides for me? Reach out!