Citizens should be able to use their own usage data to easily switch energy retailers, telcos, banks, health and educational providers, according to D
Biological women who identify as women need not fear their anti-discrimination protections will be stripped. Defence issued a new statement walking ba
We recently moved our readers to a new system. You may need to reset your password here to login.
Not a member ? Join here for free.
Forgot your password?
Home Features What local cyber attacks? US personnel data breach not isolated event
Text size :
COMPANIESFireEye, Palo Alto Networks
DEPARTMENTSAustralian Signals Directorate, Australian Federal Police
TAGS Hacker, Hacking, Threat, Computer security, Security, Phishing, cyber security, Cyberwarfare, Computer network security, Malware, Computer insecurity, Botnet, Network security, Attack, Internet security, Bryce Boland, data breach, OPM
The massive cyber attack against the US government is not an unusual event. Such attacks happen all the time, but victims either don’t realise or refuse to share the valuable threat intelligence that is vital to the global fight against cyber attacks.
The massive cyber attack that has unfolded in the United States over the last two weeks is hugely damaging, both to the lives of many millions of current and former US government employees whose personal information was stolen and to their nation’s interests.
It now appears that basic personal details as well as more intimate and detailed information gleaned from security clearance applications going back 30 years has been stolen by the one group, in a serious of attacks that began in March, 2014. The attackers targeted the federal Office of Personnel Management and health insurance firms with government workers on their books, as well as two companies doing background checks for the Department of Homeland Security, first one and then its replacement.
All two million US government staff were affected and up to 12 million more who have worked for the government at some point, according to various reports. Other attacks in the same campaign could yet be launched, building on the previously stolen information, or could be underway already. But this is not some sort of unlikely, worst-case scenario that doesn’t come around very often, and it’s certainly not an isolated event. There are far more cyber attacks than most of us realise happening all the time, and a whole world of unwitting victims.
“It’s not just enterprises … also government organisations that are relatively trivially broken into, for the most part.”
Network security firm FireEye has a better view than most, thanks to real-time data that many of its clients around the world agree to share with it, but even this is only a small sample of the full picture. To illustrate the point, FireEye’s Asia-Pacific chief technology officer, Bryce Boland, feels the need to confirm the “big data breach in the US” we’re referring to is the one he thinks it is. “There’s been a lot of them; there are a lot of them on a regular basis,” he says, speaking to The Mandarin from his Singapore office.
Receive unlimited access, get all the latest public sector news and features, plus The Juice, our daily news update sent direct to your inbox.
The Mandarin is where Australia's public sector leaders discuss their work and the issues faced within modern bureaucracy. Join today to discover the latest in public administration thinking and news from our dedicated reporters, current and former agency heads and senior executives.
Stephen Easton is a journalist at The Mandarin based in Canberra. He's previously reported for Canberra CityNews and worked on industry titles for The Intermedia Group.
Read Related Content
Public debate about the Census made it a bigger target for cyber attacks and mischief, which all government sites are to begin with. But that's to be expected and no reason to stop the discussion, says the PM's cybersecurity adviser.
Pingback: 'Final Fantasy VII' for iOS Will Probably Benefit a Lot from Apple's iOS 9 | Sherlock's Escape the Room()
Pingback: What local cyber attacks? US personnel data breach not isolated event | cyber attack squad()