iTnews

Security breach strikes parliament's IT network

By Justin Hendry on Feb 8, 2019 10:29AM
Security breach strikes parliament's IT network

All passwords reset.

Parliamentarians and their staff have been forced to reset passwords after an apparent malicious attack against the parliamentary computing network overnight.

In a statement, parliament's presiding officers said the measure was one of a number of actions taken by the Department of Parliamentary Services to protected the network and its more than 4000 users.

“One specific measure, undertaken for abundance of caution, has been to reset all user passwords that have network access,” they said.

“All users have been required to change their passwords. This has occurred overnight and this morning.”

The presiding officers said DPS was currently working with the relevant security agencies to investigate the incident, but stressed there was “no evidence that any data has been accessed or taken at this time”.

They were also quick to distance the incident from any “attempt to influence to outcome of parliamentary processes or to disrupt or influence electoral or political processes”.

No exact details were provided as to the nature of the compromise, but the reset of all user passwords is said to have occurred to secure “the network and protecting data and users”.

While the compromise is yet to be attributed to any specific actor, the ABC has reported that the incident is likely the result of a foreign government attack and that security agencies are looking into the possible involvement of China.

However a spokesperson from the Australian Signals Directorate would not be drawn on whether there had been any involvement by a foreign actor.

“At this early stage our immediate focus is on securing the network and protecting its users. Proper and accurate attribution of a cyber incident takes time,” the spokesperson said, adding that the “necessary steps are being taken to mitigate the compromise and prevent any harm”.

The parliament computing network (PCN) is used by parliamentarians and their staff at both Parliament House, electoral offices, interstate Commonwealth parliamentary offices as well as DPS itself.

Parliament's presiding officers said DPS had made “substantial strides” in strengthening cyber defence of IT network at the house in since 2012.

Infrastructure and software behind email services on the PCN was also only very recently upgraded to improve performance and reliability, according to DPS’ latest annual report.

“While there is no guaranteed approach to cyber security, best practice is the ability to detect and remediate threats quickly,” the presiding officers said.

“The department has done this working jointly with expert agencies.”

“Accurate attribution of a cyber incident takes time and investigations are being undertaken in conjunction with the relevant security agencies.”

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © iTnews.com.au . All rights reserved.
Tags:
governmentit parliament security

Partner Content

Preventing cybercrime in the world of forex trading
Promoted Content Preventing cybercrime in the world of forex trading
Shut the door on ransomware
Promoted Content Shut the door on ransomware
As Australian companies lean more heavily on the cloud, edge security is finding its stride
Partner Content As Australian companies lean more heavily on the cloud, edge security is finding its stride
Beat the DDoS blackmails in 2021
Promoted Content Beat the DDoS blackmails in 2021

Sponsored Whitepapers

The top 5 tech trends to deliver business outcomes
The top 5 tech trends to deliver business outcomes
10 reasons why businesses need to invest in cloud security training
10 reasons why businesses need to invest in cloud security training
Your guide to application security solutions
Your guide to application security solutions
State of Software Security: Open Source Edition
State of Software Security: Open Source Edition
Five questions to ask before you upgrade to a SIEM solution
Five questions to ask before you upgrade to a SIEM solution

Events

  • On-Demand Webinar: How Poly and Microsoft are Embracing Future Work Environments
  • [iTnews and Micro Focus] Navigating the cloud modernisation minefield
By Justin Hendry
Feb 8 2019
10:29AM
0 Comments

Related Articles

  • Transport for NSW data stolen in Accellion breach
  • DTA cops pushback over proposed digital ID charge model
  • ATO to keep JobMaker businesses honest with data matching
  • Australian police, regulators continue unlawfully accessing metadata
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

TPG Telecom to start enticing NBN customers to move

TPG Telecom to start enticing NBN customers to move

Infosys scores another $40m for Centrelink payments engine build

Infosys scores another $40m for Centrelink payments engine build

Telstra InfraCo opens up telco's own fibre network

Telstra InfraCo opens up telco's own fibre network

Transport for NSW data stolen in Accellion breach

Transport for NSW data stolen in Accellion breach

You must be a registered member of iTnews to post a comment.
Log In | Register
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.