How cyber-crime has become organised warfare | Four Corners
HTML-код
- Опубликовано: 16 апр 2023
- Every seven minutes a cyber-attack is reported in Australia
Millions of Australians have had their data stolen in malicious attacks, costing some businesses tens of millions of dollars in ransom. The federal government is warning the country must brace for even more strikes as cyber gangs become more sophisticated and ruthless.
Four Corners investigates the cyber gangs behind these assaults, cracking open their inner operations and speaking to a hacker who says he targets Australians and shows no remorse.
The program travels all the way to Ukraine and discovers we share a common enemy in the battle for cyber security.
![Vigilante Hacker Outsmarts Cyber Mafia [4K] | Web Warriors | Spark](http://i.ytimg.com/vi/Db4MBkX6Rtw/mqdefault.jpg)
What Australian companies need to understand is that the data they collect doesn't belong to them, it belongs to their customers. There should be massive, multi-million dollar fines for companies that do not protect this information properly.
as the information commissioners office is doing in the UK. MSP's are about to become Critical National Infrastructure here too soon.
Sounds good until you realise that if you fine them millions for leaks, they'll instead just pay millions to russian hackers to cover up that they got hacked. And in turn, you actually make the situation worse.
So no, not a good solution
@@AZ2PM Good point.
right,,,, and that will not change... it has not in 10 years..
Ideally, all governments can say "is offer some sort of fine if businesses are not using [acceptable] measure of protection.
We need details... What are these {measures} they speak off?? If they won't provide details then neither will be I.
Look, its fair...... at the end of the day...
and that they probably shouldn't be collecting it anyway. the customer can keep that data and bring it with them when they need to do business with that company
I honestly believe that Companies and Corporations shouldn't be allowed to hold so much obviously unnecessary data!
Not to mention the ludicrous difficulty in getting them to delete said data. Data Brokers (yes that is a real thing) are worse... They make you jump through a thousand hoops and then make you do a thousand more just to have them press a button
Well ya... 2nd solution
1st problem: Users shouldn't be soo gullible at giving it up, thinking businesses will protect it... I've already sorted THAT part out...... Unfortunately no one else seems to. I'm not saying i don't give up anything, That would be impossible, otherwise i wouldn'yt be online, but i can sure as hell reduce what goes out.. I think of a scale of 1 to 10 (1 being low, and 10 highest level of privacy), I would say i'm a "8"
Pretty we are coming to this decision *now*.... Better late then never, i suppose, but while we were "thinking" about what do to next, our privacy was violated. :P. Slow to act as usual in Australia. I beak the law to a degree and most of classify me as a criminal "put me in jail" etc.. BUT i do so because the laws are not suited enough for privacy.
The government mentioned this in a way when they said "no one should pay a ransom". Hackers share stolen data all the time between each other, and and "ransom" is only a small segment of how rich they would get paid, as we know information is valuable... So, i'd consider myself an lucky just to get some data back.... However, the government doesn't want people's data back ...... Privacy loss. The only way is business not getting as much in the first place.
Perhaps if users educated themselves more too, that data wouldn't even be in their hands in the first place. It's what i do best at..
@@alcatros I'm not saying don't regulate,, i'm saying its taking "too long" to do this. While their trying to regulate, our privacy is invaded.. Doesn't that concern ?? Saying it is one thing, taking action on it is another... and seems governments have been in this racket far too long.... If they were serious, they would of acted. Period...
Big companies can more likely afford fines. and they'll pay it just to silence the government.... Large corporations do that all the time.. They may learn a lesson where they go bankrupt :P
Smaller business don't need to be regulated because they have been doing the right thing all the time anyway..
So the system fails in itself.
We need to look at the incompetence of the victims. Why do companies such as Latitude keep customer data for many years beyond when they no longer have dealings with the customer? Why do they need to keep say drivers licence and passport info once they have suitably confirmed the client's identity? These files should be securely expunged and deleted. Organisations need not only to improve their security, but to make themselves smaller and less interesting targets.
The finance model runs on selling the debt, they just worked out (how many would pay + interest) - (ppl who won’t pay x 10%). The debt is sold to a collection agency who runs on anything over 10% of the debts currently in collection is gross profit.
Well said, it's like they have an obsession with collecting all this data, but almost no management system for how to manage it properly and decide what they don't need.
İt is a government requirement for all financial institutions keept the records for 7 years, it is not voluntely made choice unfortunately Bob.
@@kamranaliyev5533 Thats not true, your confusing it with the need to maintain business information for the ATO.
The real question is why unethical companies like Latitude exist? Preying on people’s debt making it super easy and tempting to apply for a loan people cannot afford. When I see their ads I wish they burn in Hell along with fast food and gambling ads. All of them the Cancer of Australia.
Pathetic drama by the interviewer and govt representitives pretending to be upset that the hackers are uncaring about the impact on the victims of the hack. How about demanding the Medibank CEO & CIO hand over their recent security controls reviews. We'll see how much they care about their clients data.
It's about companies who don't care about the customers
45 minute documentary detailing what happens when you threaten hackers. Australia’s cyber security minister ends documentary by making public threat to the hackers of the world…
Cyber Security Student Threat Hunter here - It's well known that the Optus hack was not done by big bad Russians, but by someone that found an open API on the Optus site requiring zero credentials to gain access. Anyone could have entered it and stole data. Someone with very limited skills could have gained access. 24hrs after the news broke, threat hunters were reporting that the open API was STILL up and OPEN...
It's also known, that yes, Optus did indeed pay the 'hacker'. That's why he completely dropped the campaign and slinked away with a lame excuse. That was part of the deal.
ACCC just announced that Aussies were scammed out of 3.1 BILLION last year, but also disclose that only 30 percent of victims report being scammed. Let's just say a hefty sum of 10 BILLION was scammed from the Aussie public last year and that number will only increase this year...
Amateurs are finding hundreds of SMS scam campaign Phishing sites every day aimed at scamming the Aussie Public. Mygov, Auspost, Linkt, all banks, etc. These are the sites people find in links when they get a SMS message that 'looks' official. Very little is done about these sites it seems and the Scam Groups are making an absolute killing...
As unpaid Students, we are having to spend hours daily going through troves of NRD's and finding/reporting them because the 'experts' we are all told that are protecting the Aussie public, well, they're nowhere to be found. 'Australian Cyber Security' only seems to apply when scammers/hackers target gov/company directly and the Aussie Public being scammed directly is of no real importance...
Very accurate observations. Australian companies and Govt agencies don't want to do security, they push back in every project meeting and security controls review.
@@barrythompson8813 I guess it all comes down to these entities not wanting to spend $ on things they either don't understand or don't care about. They could be using cyber tools that may cost a few hundred, but would save millions of Aussie dollars from being in the hands of scammers. I hope things change before an inevitable cyber 9/11 occurs, but then again, from the complete apathy we have witnessed, maybe that's the plan...
They think it is better to pay 100K one time to a ransomware group than hiring cybersec employees that would cost more than 100K/annum . My brother had a tech support IT company forced to shut down after a hacker hacked his network and had cctv access he also did a DDOS attack and constantly calling with international numbers on comapany phones my brothers manager got his fb handel hacked because he received a phishing email, company had 32 computers in total and all had ransomware on it .
You sir are a hero. Big companies can pay security experts for protection. The 1s that don't we find out about on the news eventually. The real victims are the everyday and usually elderly people that get scammed out of huge amounts of money in very basic scams. There are entire you tube videos dedicated to this. Those videos showed more being done to help fix things than this entire documentary.
@@danielray7457 Our account, which we use to both expose scammers and lacklustre Oz cybersecurity has been attacked after we were featured on CH7 The Latest. The main culprit is some lazy AF Oz cybersecurity entity that is receiving huge $ to 'protect' brands who got embarassed. We exposed daily what a terrible job they are all doing - they sent 20k fake bot followers to try to get us taken down. Oz 'cybersecurity' is broken. Poor leadership, nepotism instead of meritocracy. In our run we found and took down thousands of scam sites that were not being picked up by people being paid 6 figure sums to do so, and we estimate we saved Aussie public tens of millions that they would have otherwise be scammed out of by these sites/scammers.
That threat in the end was so intimidating 😂😂😂
Hackers are ALWAYS one step ahead...That's how the game is played.
These companies need to be fined much more than they have been for this breach of private data. They should also be forced by law to delete data after a certain amount of time has passed.
Ahahaha, you need to get a job then. All your info being collected and documented is normal on many levels, if you want a tax return or want medical surgery for example. The question is, what can the govt do with this info? Can they prevent you from going further than 10km from your ‘home’ without any charge, arrest or court date, as has been shown recently?
100%. They shouldnt be allowed to collect (and forced to delete) any information they don’t absolutely categorically need to deliver the service.
Totally, the current fines are just one of the many costs of operating ..
These companies often pay large political donations. So they rarely are held accountable.
@@andrewthomas695 Never held accountable? I would refer you to my comment above and The Privacy Act 1988 and on the 13 December 2022 the increase of maximum penalties under the Privacy Act where they provided the Office of the Australian Information Commissioner with enhanced enforcement powers. The commissioner has taken action with these new powers against many companies involved wake up educate yourself.
Companies storing our personal data need to be held to account ... Laws have to be created to ensure that companies who store our Financial and Medical data .... HAVE to store that data in an Encrypted form....Only held for the MINIMUM amount of time it is required and destroyed in a manner that it can never be viewed again - Companies that are caught breaking these laws should be heavily fined and have their senior managers sent to jail
The problem, is laws change,, once use give up info you've basically lost that privacy, because we take full 100% responsibility companies are gonna do what they say.
The trust is broken,, but while most wish they could be heading this way, they'd rather use technology as a gateway to trust more businesses..
No amount of encryption is gonna prevent harm of ones personal data..
Except the government spies on us all with that information as well.
encrypted forms are good, but wouldn't be be better not to hand ot over in the first place?
Encryption will be broken, its only a matter of time. Better encryption is always good, but since we only believe public info anyway, all i have to keep is not tell anyone what i'm working on, then announce it at the last minute, freaking everyone out. Sorry, unless i can have 100% certainty business will never share data, i will continue to do what's best for me. It can't be 97%, 95%
It MUST be 100%... after all you don't put our privacy policies for no reason do you..
@@Tech-geeky Sometimes you do need to share your personal data IE Medical records from local doctor to hospital ...or ..Financial data when applying for loans etc ... In the UK and Europe we have GDPR laws that are supposed to protect us ... but they are not properly enforced
The Aussies could do worse than read a copy of the GDPR and work up something similar. Corporate 'carelessness' is the real problem here. As a security professional with over 40 years in IT I can state with confidence that most computer systems are very poorly managed. Security is still not a priority for many companies. Heads are firmly stuck in the sand. (Also the rather sad and pathetic bravado at the very end about 'getting the hackers' is of course as silly as it sounded in the program)
You make really good points and would know more than most about the subject.
Thanks heaps for that, i was gonna say the same... However, no company think we should all hide.... They all reckon they are good at what they do,,,, UNTIL it bites them
Its too late by then Hackers are always steps ahead so how can you defeat a moving target ? This crime gangs pop up and rebrand like spammers could easily do as well.. (hope i didn't give anything away).
Ukraine has a much better chance of taking down Russia, then Australia has to beat hackers.. At least we know *one* of those is likely, despite what our government things... All "they" care is hacking hackers..
You don't add fuel to the fire, as they just enhances their attacks.. But that's all out government can think of.. Stupid government.
Judging by how many hacks have occurred in the past few months, i doubt many understand the GDPR 😆
What's worse than the Australian Census forms we all fill out ?.. its chock-full of privacy juicy goodness just begging to be harvested. That alone, would be valuable to hackers. Probably more valuable than what we choose to give up online to businesses. It's allot easier to access.. Its all on one form.
The bottom line, once something starts it can't be stopped, and in the end Technology was, is , and will be
counter productive, it's cheating...
Governments need to be held accountable. They work hand in hand.
I like the part where a hacker comments "Australians are the most stupidest humans alive and they have a lot of money for no reason, a lot of money and no sense at all."
As a natural born citizen, I can attest to the collective stupid of my fellow Australians.
I agree
Ideally, if you think they can't touch you, then you would say that..
Unfortunately, for him, he is right (in part). ...... not the 'stupid' bit, but its not like Australian's think before we give out info either We are willing to offload stuff online and the come back when its 'breached' thinking business will protect us.. lol
I would be looking at a 50/50 split...... Give out info, on the condition it can have the 'potential' of being breached... But we don't think like that.. Its why the NSA LOVES Facebook. I have to say this, but sometimes when users don't do the right thing, you make them understand... And if a breach happens to set them straight.... so be it.
I'm not boyish towards anyone, but if users are seriously not gonna act to fix it. then what will make them??? A bit 'tough love' is needed. It took me about 6 weeks to retain my brain.
Normally a country only gets rich cos they directly or indirectly robs another country. It isn't until I stopped and think about how finances have impacted my life and life experiences... Why would people max out their own credit cards ? What's happened to my father's pension or his savings ? Why are certain companies popping up in other regions of the world with loans and acting in jurisdiction that they shouldn't ? ... Banks selling products between one another also without deep scrutiny as well. I say that some maths have gone wrong imho... from a country with no banks, suddenly to find all global banks opened up for transaction....
It's true. A country full of idiots who take no personal responsibility, and expect the Government to wrap them in cotton wool
It was a painstaking labour to come with all details in one prolific documentary thanks a lot for this
This is why we love Aunty (the ABC)
@@andrewthomas695 Guardian reader?
@1:05 NO, IT HURTS BIG BUSINESSES AND CORPORATIONS WHO ALREADY STEAL MONEY FROM THE LITTLE GUY OR THEIR EMPLOYEES..
Does anyone really think that these big organisations don't sell the information they collect about their customers to other organisations that are looking to increase their customer base? A dead give away that they do is when you're filling out your personal particulars and you see the disclaimer that says your personal details won't be disclosed to any third parties.
100% soon as I reply to some good cause I get multiple spam calls & emails along with the corporate follow ups.
its all comes back down to trust.... However, if buesinness cannot be trusted, then [users] change the way we do business.. We keep going down the rabbit hole because its more convenient to trust others. (and obeying the law). (... i suppose that's a brick wall there)
Recently got a call from a company I have never heard of requesting that I call back about an overdue BAS account - I thought it was a scam and rang my accountant who looked into it and confirmed that the company was in fact working on behalf of the ATO. So I guess they have our data now.
@@missinterpreted4923 ATO doesn't need permission.. They have all the power do to whatever they want... But they say they need "consent" because, just like power-hungry governments, user will mosre likely trust them if you think "they must have permission"
How do you think people get caught getting Centerlink payments while working and no informed consent from me?
I got busted .. On my way to work i got a "phone call", tried to play dumb (not knowing. what payment i was getting) but it didn't work 😆 Now, looking back it is kinda funny.... Point is though, they have the power, tyhey don't need consent from anyone... ATO is the same..
As users, if we give up info to "first party" (businesses we deal with directly) actually keep it within their company then perhaps it would be more trustworthy to give info to them... but they constantly say "We need to share it with [our partners] *whoever they are*... Why should that make it sound better?
I believe that part of the reason for Medibank holding so much data is because they probably have to forward it to other parties. But I think the larger reason is that Medibank just didn't care enough to go and do a spring cleaning
Having an unencrypted database is just . . . ridiculous
@@tomsmith6513 Absolutely ! Having worked for several Government agencies and private orgs, it's standard practice to push back on the requirement to meet basic security controls. It's treated as a battle of wills, not a professional compliance engagement.
didn't they even admit their business is 'complex' ? That tells you all. Not even THEY know how much data they keep or share 😆
the class action lawsuits will cost them more than the 10million ransom they refused to pay
spring cleaning is good... but anytime companies say "they need all this' most of the time their augments tend to revolve around protection measures, and verification of an account.
If Medibank didn't hold that much info, how they verify who you are ? Its a double--edged sword. People are more inclined to be on the safe-side, but as soon as hackers start hacking, all of a sudden the tables turn and [we users] now want to be protected as well. HOw can you be protected if you cannot verify anyone?
Nicely done, Thanks very much!!
Sometimes I wish we could all go back to the pay phone days and file cabinet days. It’s incredible how someone from thousands of miles away and a computer can case such damage. Nobody is safe these days
can still get scammed and stolen from, and with those technologies the failure is harder to track.
😆 ya that maybe a good idea.. At least in the 80's you didn't have as much damage as we do in 2023.. We all praised 'this new thing" called 'The Internet",,, but look at what came out of it ?
that's tech for ya :)
Perhaps we should ban Remote Desktop connections on Windows because of "what it can do" too :P
Its used for good purposes, but can be used for bad... Unfortunately, not everyone is trustworthy.
@@Tech-geeky some companies and govt departments do exactly that, and for that reason.
@Tech-geeky The Internet basically ruined man kind as we know it. Humans have been reprogrammed. Once this generation dies the future generation will only know life with insane technology. They will never know how good life was in the pay phone days
Unfortunately companies are corrupt and greedy and they rarely spend on security. Just offer a fake apology and that's it.
"move on, nothing to see here.."
The International community of Nations must CREATE an International TASK Force for full Apprehension & ANNIHILATION of all Cyber criminals
There is the 5 Eyes.
Or companies shouldn’t keep information that don’t absolutely need 🤷♂️ no one mentions that. There are only 3m Medibank members yet 9+ m member I for stolen. Why does Medibank keep years and years of history in everyone?
Because your governments laws (or lack of) on data protection let's them do it and there are no consequences for letting our data get hacked... I guarantee that Latitude's ICT budget is lower than the CEO's pay...
The doco drama music is ridiculous and unnecessary, the subject is dramatic enough. Watching at x1.5 speed to make the dramatic tone more bearable 😂
What a bunch of absolute hypocrites these original information gatherers are, i.e. the companies collecting the information to begin with. So the hackers are "sub-human" are they? What about the ones forcing the rest of us to part with all this information, often selling it or just handling it in such a way that it ends up hurting us all?
"forcing" = "voluntarily" handing it over to comply with laws you mean??
@@Tech-geeky If you mean that most of the things we're concerned with when it comes to regulations on the "internet", aren't regulated at all, or rely on laws made for something completely different, written perhaps hundreds of years ago, then I suppose you're right, they're not doing anything illegal. But what laws exactly does Google follow when, let's say, they sell information on users to Israel, tailor made to target Palestinians? What laws did Facebook turn to when they sold information to Cambridge Analytica, even selling information on people that wasn't even *on* Facebook? And please, don't try to tell me these are just some rare examples. The problem is of course not always the data gathering in itself, but the lopsidedness with which information is shared, i.e. "who gets to know what is known". If you understand that 60% of all the commercial traffic on the internet is "commanded" by three companies, you should definitely ask if such a concentration of power over information is even possible to regulate. In "forcing", I then simply mean that it's not possible for me to understand what I'm agreeing to, even just connect my computer to the internet, let alone all the things controlled by, for example, the above mentioned entities. (And, no (!), questions do not become more pertinent by using two question marks.)
That was truly fascinating, wow! 🙌
People would be horrified about how inept many iT teams are and how hard it is to get funding to be even basically competent
Amen
@ 2:19 it's called Cyber CX 😂 aka Cyber Sex 😂😂😂
At 6:42, that lady gives a great description of both th' hackers and American private health insurance company executives and employees.
What I dont understand is why aren't these companies encrypting customer data ?
probably the same bunch of companies who don't use a UPS to protect mission crucial date. or create backups.
It's really expensive to deploy and constantly update ICT infrastructure and practices... and, given that companies face no legal ramifications for allowing customer data to be hacked, why would they consider spending millions a year... it's not their data that's being hacked...
@@maigepresents5840 Your right. It's our data we give to them to protect... : That's a pretty bias view of a business we should be trusting with our personal information.. I can see why they like to keep secrets.:P
it's not as simple as just encrypting the data, it depends on what the data is used for. In most cases, there always will be a state where data will remain unencrypted and that's where the weakness is.
Data at rest and data over transmission should be encrypted. It's that simple. Pay the money and have a good infrastructure. Don't start crying when you get a big fine for not sticking to the PCI DSS standards when you get breached. They are not victims.
For global online commerce to prosper, every internet user should be licensed and this license is used to login....
Another example of why humans can’t be trusted with nice things.
We are our own worst enemy.
the governments are a far bigger threat to the public than every criminal in the world combined
Crazy to think the new mobs are computer geeks
Another big industry is created in the name of cybercrime. Now, you have to have cyber security for small and big businesses. Enormous demands for students studying cybersecurity. Blaming hackers for stealing information for illegal purposes. But at times, insiders could sell access to so-called hacking groups. Without the help of insiders, it is not so easy to gain access to any database.
nearly all cyber attacks can easily be avoided for example most common form of infection is an employee clicking or downloading a malicious email attachment. very easy to avoid with common sense
unfortunately, the government doesn't make much of that lately 😆
Man the music in the end sounded like the beginning of the jocker music in the movie "'The Dark Knight".
I have been of long belief that the main developers and backers of hackers and hacking tools are the same companies that make antivirus software ECT. It's smart business to create a problem then sell the solution, they just do it from behind a curtain. Considering some of their sales tactics I have seen it shows many of them don't have much in the way of morals.
😆 Yikes ... That would mean every legit business out there eg Apple, Microsoft are also hackers themselves.. I dunno about that, but I do know some companies do scammers part time after hours for a "pay check" in India... like Dell.
If you can't trust a legit business, who can ya trust?? But let us all put the fear of god in people.. That'll make everyone understand.. :P
Considering the biggest proportion of data lose starts with social engineering I find this conspiracy theory hard to believe.
Pass laws that include large prison sentences with fines for the owners and share holders, hold them responsible because they would/have already been paid and benefited. Maybe!
Is a hospital to blame if a patient dies during a cyberattack? Healthcare systems are the most targeted group in the US. There have been deaths. One hospital that was once praised for having one of the best IT departments/cybersecurity fell victim to a ransomware attack just a few years later and an infant died bc fetal monitoring systems weren’t accessible. The baby was delivered with the umbilical cord wrapped around the neck depriving oxygen - a situation that usually would’ve induced an emergency c-section had their systems not been taken over for an entire month. A hospital in Idaho have to divert ambulances in may bc of an onslaught of cyber attacks. When the best tech companies on earth are struggling under the crippling pressure of attack after attack, it’s unfair to assume all breaches are the result of mere carelessness or negligence.
These systems are operated by humans and they’re in a state of war against a sea of state sponsored criminals trying to ruin the fabric of our societies. I’m sure the victims of these attacks often share in some of the blame but ultimately the fault belongs to the criminals. It’s disheartening to see so many comments victim blaming ignoring the fact that massive forces are seeking to undermine and destabilize our countries. But who cares about foreign adversaries when there’s lawsuits to file I guess… that’s how it goes in the States more often than not
medibank: their money is more important than our privacy.
We have enough problem with the postcode gangs in Australia too.
Brilliant
Good on you Medibank!
Well done Australian truth😊
"we take your privacy and security seriously...... now click ok"
instead of blaming the hackers, blame the cyber security and IT staff that work at these companies, as well as the executives leadership at these companies. There needs to be much more harsh punishment for negligence involving the loss of customer data.
27:49 That simply makes your companies reluctant to admit that they have been hacked, lol.
We need huge surveillance and support . It’s a disgrace ! 😣😖
Should have upgraded the Internet instead of the NBN.
This is never ending LOL
At least we stand a chance in THAT.
Sadly the corporations that are mentioned didn’t inform the cardholders in fact laiude are still recovering funds from the cardholders.😢
The world has always been nasty.
Australian individuals are now closer than ever to suffering like others experience from afar.
The injustices hurts all the same.
Making a ransom illegal isn't going to change anything. It is, however, going to make the situation worse. Much worse. The cyber-pirates are going to step up the attacks & make larger heists & super-larceny.
True
Just ban hoodies and there will
Be no hackers
Currently suffering from a serious situation of damage due to cybercrime. Starting with sexual crimes, I have been threatened with personal safety, and my computer and mobile phone are often broken or not working due to the frequent hacky response. Cybercrime investigations are not carried out thoroughly, and it is very difficult to get help as a victim in Korea.
So we are sending out hackers to catch hackers that haven't done anything yet. What year is this again... 1984? Soon, if I think something, I'm going to be arrested. 🙁
There should be EPIC consequences.
How could the reporter possibly think he would care about distress to victims ..
22:52 He is right though. LOL
'What could Australia learn from Russian cyber-attacks?' - Dont be afraid to employ people with criminal records in defence of the nation.
🤣🤣🤣
Very true - If I wanted to hire a lion tamer, I wouldn't be hiring somebody who has never seen a lion, I'd hire the guy who has 7 of them at home already.
If the goal is to "reduce' the noise, then why does Australia/US etcc.. play the same game?? You don't make friends by attacking back... You make friends by holding people accountable.... By attacking, they're not gonna surrender,,, no one would be stupid enough to say "ok, i'll come along quietly'.
Put yourself in the mind of a hacker...... Would they seriously admit "I have done wrong"?? Some will crack, and others will not. Australia seems to be on the belief they ALL will.
42:00 how on earth can it be that a SOC of a country doesnt have power backups (UPS, generators)?? Probably they showed them a random meeting room but not cyber command.
It is Google Facebook Microsoft!!
The Question big question DO THE GOVERNMENT AGENCIES GLOBALLY NOT HAVE THE TECHNICAL CAPABILITIES TO DE- ANONAMISE THE CRIMINALS? ?
If the NSA is capable of removing SSL encryption, i wouldn't hold it past them. They do have 'power' after all and over-reach all resting on "a trust of privacy polices" that users are trusting. In fact i almost got busted by the FBI recently, which told me this is defiantly true what they do.
Nope... because they aren't stupid enough to give their personal details out like candy...
You can spot the hackers by their mo-hawks.
😂🤣
That’s what the hoodies are for , to hide the Mohawk
That was interesting
The kaseya case was very clever, they go full auto.
It's just like a normal functioning software company, the only difference being doing unethical business.
Like a lot of software companies and digital services then 😄
I find it weird that they were so fixated on Russia. The people involved can come from anywhere in the world. Often from poorer countries by people who want to make more than they could in a normal job. Yea sure there are hackers in Russia but to single that country out so much was odd.
As for the part about the afp protecting business, they gave no actual information on how they do that. That could have been interesting to know as to how they get involved. I can only imagine that they mostly just give advice, but I could be wring and I wish the documentary had explored this more.
even China... but its all too easy to look back at history and blame "the most sophisticated hackers in the world" These days, we have VPN's, Tor, and/or the ability to hide IP''s
When it comes to hacking. THAT key fact is omitted., Why? because to me, that is the most relevant of all.. If you wanna hide your tracks as a hacker, that is exactly the first thing you would do. All of a sudden the "situation changes". Are they REALLY from Russia when the IP could be from anywhere in the world? We all gotta start learning just because most people can encrypted servers for good, doesn't exclude then in 'certain key situations either' for bad. But we have a knack for doing that :P
Makes my job easier anyway :)
Australian politicians are wild, just calling some foreigners subhuman.
This video is truly hilarious in terms of delusion and hubris. The attitude of these companies to how they treat customers/ user data is just jaw dropping arrogance.
Medibank would show my bank details on their site for no reason, wouldn't allow me to put non alphanumberic characters as my password for absolutely no reason at all. And still they havnt changed anything!
I think this same as the cybersecurity attack at Indonesia Bank,
This is why individuals should own their own data, all data. When businesses want to access this data, they pay for an encrypted "look" every time they want to access it. The current model where businesses own individuals' data has failed.
How would a payed lock prevent hackers ? Australia thinks only after the damage is done... No amount of "Sorry" statements is gonna get info back.. Just like in any crime, the punishment should eb equal to the actions caused..
The same does not work for privacy, but it should. Every year cyber attacks increase, never decreases.. EItehr that means hackers are getting smarter, or we're just getting dumber.
@@Tech-geeky ...and to add insult to injury, the Australian Government forgets all about it once it leaves the news cycle.
Ukrainian cyber security forces using Windows 😂
There would be no data breaches from these companies if they collect no data. Besides that, why do they keep using poorly designed commercial products? The answer is simple: management does not know, does not care, does not want to work.
They are everywhere. Thats what happens when you have off shore companies dealing with everyone's information.
It's so stupid that they try to diminish the character of the hackers. If they just treat them like the highly intelligent people they are. They might have caught the flaw.
Dan, like all these things how long will they last? Resin anchors have a life… great until they fail! You can’t see the bond or what effect usage is having!
>This facility in the Ukraine used for cyberwarfare is super duper secure
>Their online main dashboard for monitoring attacks shown at 38:24 is using an invalid SSL/TLS certificate
Lmao
SBU are the hackers themselves 😅
Hahahaha ip addresses. Pretty sure hackers know how to use vpns
They also know how to hack
Not sure if my phone number recently was leaked in optus breach or latitude financial, but my phone number was ported. OTP's were sent for large amount purchases. Orders were placed in multiple restaurants under my phone number.
Warfare is warfare...the only difference is where the battle takes place...nothing changes.
It’s time for Australia 😊 with America,,,, Before they Drag us into an other, that we have absolutely no grievance with 🇦🇺
ties with America 🙏
Time to unleash the fury!
45:00 - famous last words.
I had this stalker bashers nearby who react on my cellphone...they are like hackers who knew what im doing at my cellphone....
When I was working in mega IT project in China before, as I understand a lot of companies doesn't has the ability to builded up their own anti-harke system,so they don't hold their data. The Chinese government actually cooperated with large databases centers to maintenance the data safety and hold all datas. Companies only pay small fee every month to access their data from super safe databases center.
Lol. So those companies are assumed by that they are "hosting" their datas ?....
😢Are you kidding me? I want everybodys whole ctc for 5 years. Claw back this useless employees
I’m not kidding. @gabi get me these peanuts
@gabi You’re my favorite. Oops yea
@gabi I’m scared you know
cyber Attacks include microphone hack
38:08 wow, qaqa Azerbaycandansan? halaldi!
Good luck, and glory to Ukraine 🇦🇿🇺🇦
Doxing is illegal in the US
Companies make it so difficult to cancel accounts and remove data. Some of them have a "Delete Account" button on the Settings menu and I love that. But others make you email them. I'll call out names. I have been trying to get my Buffalo Wild Wings account deleted for over a year and they have said they can't delete the account or they just wont respond. Target makes you submit your phone number and home address to them to delete your account even though I never gave them that info. As long as I have no personal data on these accounts like order numbers, I'm planning to change my personal data on these accounts to fake data and then switch the email to a throwaway and just abandon the account altogether. But I shouldn't have to do that. The government should pass a law that says entities that do not provide crucial services (like electric companies, hospitals) are required to delete your data within 30 days of receiving a delete request.
Ohhh man....terrible
Interesting !
Sometimes, may not need to be too helpful
@23:24 "he" answered your questions so quickly because you are typing to a AI chatbot. THERE IS NOONE ON THE OTHER END!
But we still do business with them and let them in freely without knowing intentions.. yeah good work Aus..
Hello Ladies and Gentleman I would like to submit my phone on this pls to HELP The Commonwealth of Australia and its peoples. My name is RAMFEL
I always get my information from Manson unidentifiable people on the internet 😂
16:57 That's a captcha they would only be able to use once, but who plays the game perfectly?
The fact there is no UPS for their cybersecurity systems in Ukraine is already a fail.
What's wrong with knowing what's wrong with people
I think the most important thing to realise about cyber attacks is that the best defence against any attack is all that matters.
This means that improving cyber defence does not require caring about who is doing an attack.
Think of it like black list vs white list.
Business will have to become white list only.