2024 saw a wave of cyber-attacks in Australia that exposed the data of millions of Australians to threat actors. Fortunately, the lessons learned from these incidents can be applied to prevent other businesses from making the same mistakes. As you begin to plan your cyber security strategy for 2025, now is a good time to examine these attacks and apply the knowledge gained from them.
A Short List of Data Breaches in Australia During 2024
1. MediSecure Data Breach
The MediSecure data breach was one of the most high-profile incidents of the year, affecting approximately 12.9 million Australians. The information compromised included names, prescription histories, and contact details, causing widespread concern among both the public and healthcare providers.
Lessons Learned: This case demonstrates the importance of robust data protection measures, particularly for high-risk businesses, and the potential impact of a cyber-attack on your customers.
2. Cisco Cyber Incident
In October, Cisco confirmed that hacker IntelBroker had accessed and offered to sell data from its public-facing DevHub environment. The affected data included source code, scripts, and other content intended for customer use – potentially putting users at risk. Cisco’s investigation indicates that no personally identifiable information or financial data was involved, and responded by disabling access to the affected site.
Lessons Learned: Cisco’s decision to remove access to the site while they handled the breach prevented additional harm from coming to their users. However, it is important to note that Cisco was not aware of the breach until after IntelBroker publicly claimed it. This highlights the necessity of both threat detection and incident response. Cisco acted quickly to minimise harm, but possibly could have prevented even more had they been aware of the threat earlier.
3. Amazon Third-Party Breach
Amazon confirmed in late 2024 that employee data, including names and addresses, had been stolen in a third-party data breach. The threat actor responsible, however, claimed that the data had actually been taken much earlier, during 2023’s MOVEit attack. When asked for comment, Amazon stated that they had “not experienced a security incident”, and that their systems were secure.
Lessons Learned: Third-party attacks, also known as supply chain attacks, are relatively common. The companies affected by the MOVEit breach do take on some of the responsibility for this incident, as supply chain attacks are a known threat and businesses should take steps to prevent them.
Another important lesson is the importance of transparency. Amazon failed to mention that data had been stolen until over a year after the breach occurred, and did not accept any responsibility. This likely damaged their reputation. They could have prevented this with more open and honest communication that focused on how they were working to protect customers, instead of becoming defensive about the cause of the breach.
Understanding the Impact of Cyber Attacks in Australia
The list of data breaches in Australia during 2024, which far exceeds the few examples listed here, reveals the far-reaching consequences of these incidents:
- Financial Losses: You can face millions of dollars in costs related to downtime, incident response, and ransom payments.
- Data Exposure: When sensitive personal and financial information is compromised, the consequences can impact millions of customers.
- Reputational Damage: Businesses affected by breaches often struggle to rebuild their reputations. Particularly in high-risk industries, customers and partners expect their data to be secured and will be slow to trust again after an incident.
- Operational Disruptions: Downtime caused by cyber-attacks (such as in Cisco’s case, where an entire website was shut down) can significantly disrupt operations and in some cases, even halt them entirely.
- Legal Penalties: Businesses can face severe legal consequences for failing to comply with laws such as the Notifiable Data Breaches (NDB) Scheme. For example, the NDB Scheme requires that customers and the Office of the Australian Information Commissioner (OAIC) be informed about significant breaches within 30 days, which Amazon failed to do.
How to Prevent Cyber Attacks in 2025
The growing frequency of data breaches in Australia requires the adoption of a proactive cyber security strategy, to reduce risk and protect operations. Important steps include:
1. Implement Multi-Factor Authentication (MFA)
Requiring multiple verification methods for account access significantly reduces the risk of unauthorised entry, even if passwords are compromised.
2. Regular Security Audits
Conducting frequent audits allows you to identify and address vulnerabilities in your IT infrastructure. This includes patching software, updating systems, and monitoring for unusual activity.
3. Advanced Threat Detection Tools
AI-powered tools can detect and respond to threats in real time, minimising damage from breaches. Invest in technologies that monitor networks 24/7 and alert your team to potential risks.
4. Employee Training and Awareness
Many cyber-attacks, such as phishing campaigns, target employees directly. Regular cyber security training helps staff recognise suspicious emails, links, and activities.
5. Vet Out Suppliers
All third-party suppliers and partners should be examined closely for security vulnerabilities, and should be required to comply with certain standards.
6. Develop an Incident Response Plan
Responding to a cyber-attack is just as important as preventing one. An effective incident response plan outlines steps to contain breaches, restore operations, and communicate with stakeholders.
Build a More Resilient Cyber Security Strategy
The cyber-attacks in Australia throughout 2024 have demonstrated the absolute necessity of making security a priority during 2025. It is not enough to rely on basic measures and simply hope an incident doesn’t occur. With a robust cyber security strategy, you will be able to lower your risk of experiencing a severe data breach and safeguard your reputation.
If you are preparing for 2025, now is the time to think about cyber security. National IT Solutions can get you started, with a full audit designed to detect your biggest vulnerabilities before they can be exploited. If you’re ready to learn more, contact us today.
