Foreign power blamed for BoM attack
Last year’s attack on the Bureau of Meteorology’s network was likely conducted by a foreign intelligence service, according to the Australian Cyber Security Centre (ACSC).
The centre’s second Threat Report details the steps the Australian Signals Directorate (ASD) took to detect and respond to the breach.
According to the report, the ASD first detected suspicious activity from two computers on the bureau’s network. Upon investigating the ASD discovered a particular remote access tool malware that is popular with state-sponsored cyber attack actors.
Further investigation determined that by the time of detection it is likely the attacker had compromised all passwords on the Bureau’s network and had searched for and copied an unknown quantity of documents from the network.
The ACSC said that while it has attributed this attack to a foreign intelligence service, the security controls in place prior to the breach were insufficient to protect the network from more common cyber threats — for example, CryptoLocker malware was discovered on the network.
The report states that between the start of January last year and the end of June this year, the ASD responded to 1095 cybersecurity incidents on government systems determined to be serious enough to require an operational response.
Why we need to redefine cybersecurity success to support CISOs
When Notifiable Data Breaches statistics are released we should look at the nature of the...
Is 2026 the year of identity? Just follow the money
What $40 billion in cyber acquisitions says about the future of identity security.
Proactive cybersecurity must lead innovation in Australia’s AI future
AI presents extraordinary opportunities for productivity, innovation and growth but it also...
