Google AI
The Times Australia

Times Media

GDPR opens doors for cyber criminals

  • Written by: Murray Goldschmidt, COO at Sense of Security


Last month, the world saw the unveiling of the European General Data Protection Regulation (GDPR). Its aim is to protect and empower all European Union (EU) residents, whether in Europe or overseas, when it comes to their data privacy. It also serves to reshape the way organisations operating in the European market approach data privacy.


In a nutshell, the GDPR wants EU residents to have complete control over their personal data by simplifying the regulatory environment. However, companies around the world are choosing to implement the regulation across all customers to ensure their data is also protected, and to streamline the compliance process. This is why many of our inboxes are now flooded with updated privacy statements from global brands.


However, as residents and businesses welcome the introduction of GDPR, so do cyber criminals.


GDPR may lead to an increase in sophisticated ransomware attacks

Businesses are undertaking specific measures to improve their cyber security capability in order to protect the data they have, and to comply with GDPR. However while this may thwart lower level attacks, it is very likely to attract higher concentrations of strategic and sophisticated attacks likely to devastate an organisation.


For example, in some instances it will be less costly for a business to give in to a ransom demand than to inform customers when a breach occurs. If it costs a dollar to notify each user, and a company has 500,000 users, there’s already a cost of half a million dollars before any fines or further expenses are calculated. Hackers use this to their advantage by demanding a smaller amount as ransom, incentivising companies by providing the “lesser of two evils” option.


Not only does paying a ransom potentially cost less than reporting, but hackers convince companies that they’ll waive the reputational damage that comes with a public breach, by attempting to sweep it under the rug.


Further to that, GDPR outlines that organisations have a 72 hour reporting period once they have been made aware of a breach, to notify the right authorities. Hackers can take advantage of this small window by applying pressure on an organisation to act on a ransom demand. We’ve seen examples of ransom payouts in the cases of Uber, Yahoo and Equifax - showing that a breach is likely to surface no matter what steps companies take to hide it.


GDPR could make it harder to protect residents

The GDPR also adds increased complexity to incident response. Services which provide vital information to security researchers and law enforcement agencies to identify the origins of phishing scams or malware distribution sites are finding it difficult to comply to the regulation.


The Internet Corporation for Assigned Names and Numbers (ICANN) is currently struggling to get their WHOIS system, used to query domain name registrant databases, to comply with the GDPR. This is unlikely to occur until at least December 2018, meaning agencies and researches will have a difficult time investigating potential cyber attacks, and leaving themselves open to hackers in the meantime.


The increase in strategic, sophisticated attacks and their impact further drives the need for organisations to remain vigilant. Knowing the type of data held, how it is protected and even if it is required, needs to be assessed and appropriate action undertaken to reduce risk. This, in line with appropriate governance, technical controls, detection and response capabilities need to be focal points for all organisations, large and small.


By Murray Goldschmidt, COO at cyber security firm Sense of Security

Property Times

Weekend Property Tour: Discover Melbourne's Eastern Suburbs

Melbourne's eastern suburbs offer one of Australia's most enjoyable weekend drives. From elegant inner-city neighbourhoods to thriving family communities and the gateway to the Yarra Valley, this route showcases a diverse range of homes, shopping p...

Melbourne Weekend Property Tour: South of the Yarra

Melbourne's south side has long held a special place in the city's property market. Stretching from the inner-city elegance of South Yarra through leafy family suburbs and out to the bayside, it offers everything from luxury penthouses and Victoria...

The Hidden Financial Risks of Self-Managing Your Australian Investment Property

For many Australian property investors, the initial appeal of self-managing a rental property is based on simple mathematics. By bypassing professional management, landlords hope to save the standard six to ten percent agency fee and maximise their a...

Australia's Property Market Is Adjusting. So Are Buyers

Australia's housing market is entering a new phase. For much of the past decade, buyers became accustomed to rising prices, fierce competition and the belief that property values would continue climbing over the long term. Today, the market feels ...

Food & Dining

Ultra-Processed Foods: The Hidden Ingredient in the Modern Australian Diet

Walk through almost any Australian supermarket and much of what fills the shelves has one thing in common: it has been processed. Processing itself is not the problem. Freezing vegetables, pasteurising milk and baking wholegrain bread are all form...

Is Red Wine Good for the Human Body?

Red wine has long enjoyed a reputation as the healthiest alcoholic drink. From the vineyards of France to dinner tables around Australia, it has often been associated with heart health, longevity and the so-called Mediterranean lifestyle. But does...

Masterchef's Flat Iron Steak available at Coles

Coles is giving customers the chance to cook like a MasterChef, launching a new 100% Australian No Added Hormones Beef Flat Iron Steak, following its starring role in Monday night's episode of MasterChef Australia. Featured in a challenge set by C...

Macca’s introduces new McSmart range with more choice from $6.95

Macca’s is launching its new-look McSmart range from Wednesday,1 July, with  three new meals at three price points.More than 30 million McSmart meals have been sold across the country over the past 12  months, with McSmart becoming a go-to option for...

Business Times

When you sell your life's work: how capital gains tax applie…

For many Australians, an investment property is the most familiar example of a capital gains tax event. Buy a property, hol...

Business Ideas Changing the World

Every generation of business leaders faces its defining challenge. For some, it was rebuilding after war. For others, it w...

Build Your Business on Land You Own

Why every startup should own its website, domain name and customer relationships Starting a business has never been easier...

Technology

Why Australian Enterprises Are Reth…

The corporate landscape in Australia has undergone a permanent structural shift over the past few ...

Local News

Fremantle Ports to trial project to…

Fremantle Ports has partnered with Byssal and DevelopmentWA to trial an innovative nature-based pilo...

Culture

Is Fast Food Really Food?

It is a question that sounds provocative, but it goes to the heart of a growing debate about what ...

Travel

Overtourism: Why Some of the World's Mos…

For decades, attracting more visitors was the goal of tourism authorities around the world. More t...

The Times Features

Is Fast Food Really Food?

It is a question that sounds provocative, but it goes to the heart of a growing debate about what ...

Ultra-Processed Foods: The Hidden Ingredient in the Mod…

Walk through almost any Australian supermarket and much of what fills the shelves has one thing in...

Is Red Wine Good for the Human Body?

Red wine has long enjoyed a reputation as the healthiest alcoholic drink. From the vineyards of Fr...