Connect with us

Tech

Optus: How a massive data breach has exposed Australia

Anger rises after 40% of Australians had details stolen in possibly the nation’s worst-ever breach.

Last week, Australian telecommunications giant Optus revealed about 10 million customers – about 40% of the population – had personal data stolen in what it calls a cyber-attack.

Some experts say it may be the worst data breach in Australia’s history.

But this week has seen more dramatic and messy developments – including ransom threats, tense public exchanges and scrutiny over whether this constituted a “hack” at all.

It’s also ignited critical questions about how Australia handles data and privacy.

The alarm was sounded last Thursday

Optus – a subsidiary of Singapore Telecommunications Ltd – went public with the breach about 24 hours after it noticed suspicious activity on its network.

Australia’s second biggest telecoms provider said current and former customers’ data was stolen – including names, birthdates, phone numbers, email addresses, passport numbers and driving licence numbers. It stressed that payment details and account passwords were not compromised.

Those whose passport or licence numbers were taken – roughly 2.8 million people – are at a “quite significant” risk of identity theft and fraud, the government has since said.

Optus said it was investigating the breach and had notified police, financial institutions, and government regulators. The breach appears to have originated overseas, local media reported.

In an emotional apology, Optus chief executive Kelly Bayer Rosmarin called it a “sophisticated attack”, saying the company has very strong cybersecurity.

 

Image source, ABC News

“Obviously, I am angry that there are people out there that want to do this to our customers, and I’m disappointed that we couldn’t have prevented it,” she said on Friday.

Then a ransom threat was made

Early on Saturday, an internet user published data samples on an online forum and demanded a ransom of $1m (A$1.5m; £938,000) in cryptocurrency from Optus.

The company had a week to pay or the other stolen data would be sold off in batches, the person said.

Investigators are yet to verify the user’s claims, but some experts quickly said the sample data – which contained about 100 records – appeared legitimate.

Sydney-based tech reporter Jeremy Kirk contacted the purported hacker and said the person gave him a detailed explanation of how they stole the data.

The user contradicted Optus’s claims the breach was “sophisticated”, saying they puled the data from a freely accessible software interface.

“No authenticate needed… All open to internet for any one to use,” they said in a message, according to Kirk.

Things got worse on Tuesday

In another escalation, the person claiming to be the hacker released 10,000 customer records and reiterated the ransom deadline.

But just hours later, the user apologised – saying it had been a “mistake” – and deleted the previously posted data sets.

“Too many eyes. We will not sale [sic] data to anyone,” they posted. “Deepest apology to Optus for this. Hope all goes well from this.”

That sparked speculation about whether Optus had paid the ransom – which the company denies.

Adding to the problem, others on the forum had copied the now-deleted data sets, and continued to distribute them.

It also emerged some customers’ Medicare details – government identification numbers that could provide access to medical records – had also been stolen, something Optus did not previously disclose.

Late on Wednesday, the company said this had affected almost 37,000 Medicare cards.

‘Possibly Australia’s most serious breach’

Optus has been inundated with messages from angry customers since last week.

People have been warned to watch out for signs of identity theft and for opportunistic scammers, who are said to be already cashing in on the confusion.

A class-action lawsuit could soon be filed against the company. “This is potentially the most serious privacy breach in Australian history, both in terms of the number of affected people and the nature of the information disclosed,” said Ben Zocco from Slater and Gordon Lawyers.

The government has called the breach “unprecedented” and blamed Optus, saying it “effectively left the window open” for sensitive data to be stolen.

In an ABC television interview on Monday, Cyber Security Minister Clare O’Neil was asked: “You certainly don’t seem to be buying the line from Optus that this was a sophisticated attack?”

“Well, it wasn’t. So no,” Ms O’Neil replied. The moment drew lots of attention online.

What happened at Optus wasn’t a sophisticated attack.

We should not have a telecommunications provider in this country that has effectively left the window open for data of this nature to be stolen.#abc730 pic.twitter.com/KamkiapcZl

— Clare O’Neil MP (@ClareONeilMP)

September 26, 2022

The BBC is not responsible for the content of external sites.View original tweet on Twitter

Ms Bayer Rosmarin told News Corp Australia on Tuesday: “We have multiple layers of protection. So it is not the case of having some sort of completely exposed APIs [software interfaces] sitting out there.

“I think most customers understand that we are not the villains,” she said, adding Optus could not say more while the investigation was ongoing.

The company has faced calls to cover the costs of replacement passport and driving licences, as people scramble to protect themselves.

Australia ‘a decade behind on cybersecurity’

The breach highlights how much Australia lags other parts of the world on privacy and cyber issues, Ms O’Neil says.

“We are probably a decade behind… where we ought to be,” she told the ABC.

Australia probes firms over customer ‘faceprints’ Australia’s Nine TV network hit by cyber-attack

Both sides of politics have traded blame on the issue. Opposition MPs have said the Labor government is “asleep at the wheel”, but the government points out it was only elected in May after a decade of conservative rule.

Ms O’Neil pointed to two areas needing urgent reform.

She argues the government should be able to better penalise companies like Optus. In some countries, the company would have faced hundreds of millions of dollars in penaltiesbut Australia’s fine is capped at about $2m, she said.

She also wants to expand cybersecurity laws that were introduced last year to include telecommunications companies.

“At the time, the telecommunications sector said: “Don’t worry about us – we’re really good at cybersecurity. We’ll do it without being regulated. I would say that this incident really calls that assertion into question.”

Security experts have also suggested reforming data retention laws so telecommunication companies don’t have to keep sensitive information for so long. Ex-customers should also the right to request companies delete their data, experts say.

Optus says it is required to keep identity data for six years under the current rules.

Other industry figures have argued consumers should be able to take companies that lose control of their information to court, instead of the industry regulator.

 

 

Anger rises after 40% of Australians had details stolen in possibly the nation’s worst-ever breach. 

Continue Reading

Tech

IBM misses first quarter revenue estimates; cuts growth forecast to 6%-8%

IBM, a US-based technology giant, announced on Thursday that its revenue for the first-quarter (Q1) 20 The revenue figures were lower than Wall Street’s estimates of $14.35billion, but the earnings per share (EPS IBM’s targets were met in the first quarter as both its software and consulting businesses grew by 6% and 8.2% Big Blue also reiterated their full-year forecast of free cash flow of $10.5 billion.

Cognizant Technology Solutions Corp cut its 2022 forecast in November due to a decline in contracts. IBM’s “We are heavily reliant on our teams, particularly our global innovation centers. Granger said that India has never been about labour arbitrage, but rather a talent play. IBM Consulting contributed to This segment was rebranded in 2021 from IBM Global Business Services prior to IBM’s separation with Kyndryl.

Analysts say that the offering is in direct competition with IT services giants Accenture and TCS when it comes to large Keep up with the latest technology and startup news. 

Continue Reading

Tech

Crypto firms scramble to find banking partners as willing lending partners dwindle

After the collapse of Silvergate Capital Corp., Signature Bank, and Silicon Valley Bank, U.S. regulators expressed concern about the safety and soundness business models of banks that are heavily focused on crypto clients. U.S. regulators also warned banks to be on the lookout for any liquidity risks posed by crypto-related deposits. These deposits could be subjected to rapid outflows if clients try to redeem their crypto-assets for real money. “Crypto- and Web3-start-ups tell us they cannot get a bank account for their business,” said Marcus Foster. He is the head of crypto policy at Coadec. Foster said that the issue has gotten “significantly worse” in recent months.

This has forced digital asset companies to look for smaller financial institutions located in remote corners of the global finance. Discover the stories that interest youBlockchain5 StoriesCyber safety7 StoriesFintech9 StoriesEcomm9 StoriesML8 StoriesEdtech6 StoriesA FV Bank spokesperson said the bank has seen a rise in inquiries in recent weeks despite not being insured by the Federal Deposit Insurance Corp. A spokesperson for Bank Frick in Liechtenstein said that it had also seen a “significant” increase in account requests, with the majority of inquiries coming from companies in Europe, Singapore, and Australia.

However, the bank is not purely focused on crypto and has a broadly diversified business model, the spokesperson said.Switzerland-based Arab Bank told Reuters in March it had seen an increase in U.S. firms, mostly crypto funds or those involved in crypto venture capital, seeking to open accounts, but that the bank was unlikely to accommodate all of them. While ZA Bank, a Hong Kong digital bank, reported that it had received four times as many enquiries from crypto firms after Silicon Valley Bank collapsed, it stated that it would only accept firms with a license to trade virtual assets. Nikki Johnstone is a partner with Allen and Overy in London.

She said that the “concentration risks” that come from a growing clientele seeking business from smaller firms are the “biggest challenges” of having fewer crypto banking options. She said that this increased expectation places more pressure on the firm to manage and monitor risks at a higher level. Cryptocurrency firms need banks to hold their customers’ dollar deposits, and to conduct day-to-day operations. “Of course, the motto of crypto says ‘we’re going to replace banks’. But first, we’re not there yet and I don’t think we’ll be there ever,” said Paolo Ardoino. He is the chief technology officer at Tether, which is the largest stablecoin in terms of market capitalisation.

Its reserves were previously the subject of investor scrutiny. ‘TOP TEN’ Several top banks have told Reuters they are turning away most crypto-related clients, while others say they only work with top-tier companies – policies they maintain are unchanged since their past positions. According to a source with knowledge of the situation, JPMorgan Chase does not accept any crypto-related clients anywhere in the globe, except for Coinbase which has revealed that it deposits its customers’ funds with the bank. This policy has been in place for a long time. Circle, the principal US Dollar Coin issuer, has a portion its reserves held by BNY Mellon.

A spokesperson for ING stated that the bank does “not target or focus actively on cryptocurrency firms” and therefore its exposure is “very low.” Allen and Overy’s Johnstone, a lawyer with the firm, said that banks are often cautious because of the increased money-laundering risks in the crypto sector and the lack of robust crypto regulations. Circle, the principal USD Coin issuer, holds a portion its reserves at Customers Bank. Gemini, on the other hand, says it holds reserves for its stablecoins at State Street Bank and Goldman Sachs. Coinbase has revealed that it deposits funds for its customers at Cross River Bank, in addition to JPMorgan Chase.

Ricardo Mico is the U.S. CEO at Banxa. Banxa provides payment and compliance infrastructure for crypto. “There is a concern over the lack of banking partners in the market, especially for smaller and less-proven enterprises,” he said. (Reporting from Elizabeth Howcroft in London, Hannah Lang in Washington, with additional reporting by Mehnaz Yassin and Georgina Le; editing by ElisaMartinuzzi and Sharon Singleton.) Stay on top of the latest technology and startup news.

Continue Reading

Tech

National Quantum Mission to be funded at Rs 6K crore by the Centre

The mission will have an outlay of Rs 6,003,65 crore from 2023-24 to 2030-31 and will make India the sixth country with a dedicated quantum mission after the US, Austria, Finland, France and China, science and technology ministerJitendra Singhtold reporters in New Delhi. Science and Technology MinisterJitendra Singh told reporters in New Delhi that the mission will have an outlay of approximately Rs 6,003,65 crore between 2023-24 and 2030-31. This will make India the sixth nation to have a quantum mission, after the US and Austria.

The National Quantum Mission, approved by the Union Cabinet under the leadership of Prime Minister Narendra Modi will accelerate quantum-technology-led economic growth in India and nurture the ecosystem. Singh joked that the NQM will give India a quantum leap in this area. CP Gurnani, CEO ofTechMahindratweeted, “A welcome move! The National Quantum Mission is expected to accelerate India’s tech progress, increasing India’s credibility and ability in quantum computing. @tech_mahindra We are deeply invested in Quantum and it’s encouraging that the government is putting so much focus on this technology.

“Singh said that the mission will develop magnetometers and atomic clocks for precise timing, communication and navigation. The deep ocean mission, Space, drones, and remote sensing policies, supercomputing, cyber-physical missions, the Thirty Meter Telescope and LIGO, as well as the impending NRF will advance fundamental research in the coming year. “Raman Research Institute in Bengaluru tweeted: “RRI is thrilled at the launch of National Quantum Mission. We look forward in continuing to work for the nation on pathbreaking quantum technology”. Urbasi Sinha, who heads the Quantum Information and Computing Laboratory (QuIC) at RRI, tweeted: “RRI is at the forefront of India’s quantum technology research.” I personally worked on the DPR, and am excited about the prospects it holds for me as a scientist, for the institute, and for the nation.

The mission can bring the technology development eco-system in the country up to a global competitive level. The mission will benefit the communication, health, financial, energy, drug design, and other space applications. It will also provide a boost to National Priorities like Digital India. Make in India. Skill India. Stand-up India. Self-reliant India. “We know that quantum keys that use quantum principles are secure and can withstand attacks from hackers. There needs to be fundamental changes at the network level, for infrastructure and hardware devices which generate these keys. He said that this is an area that must be investigated for defence-based installation.

Quantum machine learning can be used for satellite placements – with the increasing debris and satellites orbiting Earth, quantum optimization techniques are helpful in satellite placements – and weather analysis. He said that precise quantum hardware could be used to detect earthquakes and other geological phenomena. Malhotra, who spoke about quantum education, said that in order to make India a hub for quantum, it is important to focus on improving and imparting education at all levels.

Continue Reading

Tech

PlanSource Celebrates its continued growth in India

PlanSource, the leading provider of US employee benefit technology, shared exciting updates on their plans for 2023, as well as recent recognitions regarding their operations in India. PlanSource has offices in several cities in the United States, as well as in Bengaluru in India. The India operations deliver an exceptional customer experience by scaling processes and providing coverage around the clock. PlanSource’s rapid expansion, increased product investment and market momentum led to more than 750 employer groups choosing PlanSource in 2022 as their benefits engagement platform.

The company now has more than 4,000 clients, five million employees and eight million users. PlanSource has grown rapidly under the leadership of Tom Signorello. This includes: A plus 47 NPS score for customers, and up-time metrics and call center metrics that exceeded SLAs. Launching new products, including ‘The Source,’ an employee engagement tool that increases benefit usage, improves the overall employee experience, and puts everything employees need in one convenient place, their mobile device.

PlanSource is expanding its industry-leading integrations portfolio by adding new HCM partners, such as Paylocity and SAP, carrier integrations like Aetna and a partner marketplace with 80+ valuable add-ons. Our values are based on implementing measurable ESG and DEI initiatives to create a sustainable future, a healthier planet and inclusive community. Establishing a Women in Tech and Leaders program globally PlanSource launched its Bengaluru operations in 2020.

The India office has made a significant contribution to product development and customer support. PlanSource, founded in 2008, employs 800 employees with more than 200 based in India. Tom Signorello said during his recent trip to India that “it is an exciting time for the benefits technology industry, as automation creates increased efficiency and the opportunity for a better end-user experience.” PlanSource is well positioned to continue to lead the industry, and we remain committed in furthering our mission to deliver the best customer experience. PlanSource encourages employees to be innovative and open. This can be done at many levels.

Process innovation extends beyond development to include Marketing, Sales and Operations, Finance and Human Resources. I am therefore excited by the contributions of India operations in developing industry leading products. Our India-based leadership team and talent contributed significantly to the launch of IQ decision support, which gives our customers measurable ROI (8x-12x). Recently, our India team developed Chatbot and Personalized Communication capabilities. I am excited to see these launched this week.

In our India operations, we have created a culture that is outstanding and focuses on diversity/inclusion. In 2023, we were awarded the “Great Place to Work” certification in India. Vista Private Equity recognized our India Center of Excellence for being the best CoE among their 70+ portfolio companies. We plan to continue to grow and look forward to the continued contributions from our India operation.” PlanSource is a trademark of PlanSource, Inc., as well as other trademarks owned by PlanSource. 

Continue Reading

Tech

Elon Musk announces he will launch a rival to Microsoft’s ChatGPT

Billionaire Elon Musksaid on Monday he will launch an artificial intelligence (AI) platform that he calls “TruthGPT” to challenge the offerings fromMicrosoftandGoogle. He criticised Microsoft-backed OpenAI, the firm behind chatbot sensation ChatGPT, of “training the AI to lie” and said OpenAI has now become a “closed source”, “for-profit” organisation “closely allied with Microsoft”.

He also accused Larry Page, co-founder of Google, of not taking AI safety seriously. Musk said, “I’m starting something that I call ‘TruthGPT,’ or a maximum truth seeking AI that tries understand the nature of universe,” in an interview aired Monday on Fox News Channel. He said TruthGPT was “likely the best path to security” and would not “annihilate human beings”. It’s just starting late. Musk registered a Nevada-based company named X.AI Corp last month, according to a filing with the state. Musk was listed as the sole director, and Jared Birchall as the managing director of Musk’s family office as secretary.

‘Civilizational devastation’ The move came after Musk and a team of artificial intelligence experts, including industry executives, called for a 6-month pause on developing systems that are more powerful than OpenAI GPT-4. They cited potential risks to the society. Musk reiterated his AI warnings during the interview with Carlson. According to the excerpts, “AI is more harmful than, for example, mismanaged airplane design, production maintenance, or bad car production.” “It could lead to civilizational destruction,” Musk said. He said that an AI super intelligent could write extremely well and manipulate public opinion. Musk co-founded OpenAI back in 2015.

He stepped down from its board in 2018. In 2019, Musk tweeted that he was leaving OpenAI to focus on Tesla, SpaceX and other projects. He also tweeted that he left OpenAI because he had to focus on Tesla and SpaceX. Musk, CEO of Tesla, SpaceX and Twitter, has become CEO of Twitter. He bought the social media platform for $44 billion in 2013. Musk told Fox News that he valued Twitter recently at “less than 50%” of its acquisition price.

Microsoft Corp announced in January that it would invest a further multi-billion dollars in OpenAI. This investment will intensify the competition with Google and fuel the race for AI funding in Silicon Valley. 

Continue Reading

Latest News:

Copyright © 2021 The Bold News. Created with love by Univisionz.