ASIC's latest Corporate Plan has put cyber resilience high on the agenda ...

The EU General Data Protection Regulation GDPR which will apply from May 2018 includes enhanced data security requirements and obligations to notify regulators and individuals of data breaches A failure to comply with key provisions may lead to a fine of up to euro20 million or 4 per cent of global ...

2016 was the Year of the Data Breach for Yahoo, as it announced three separate and significant data breaches. Although the consequences of these breaches are still unfolding, the financial cost to Yahoo is already significant – in 2017, Verizon slashed the price of its deal to buy Yahoo by US$350 mi ...

OAIC concludes investigation of Australian Red Cross data breach where a one-off human error by a third party provider's employee led to a massive data breach that hit the Australian Red Cross Blood Service ...

The Target data breach brought the liability of boards and directors in relation to cyber resilience into focus. Target's shareholders brought litigation against all of its directors, the chief financial officer and the chief information officer due to what was perceived as recklessness and disregar ...

The Department of Prime Minister and Cabinet has recently considered an early draft of a document defining a new 'cyber lexicon' at a roundtable hosted by Alastair MacGibbon, Special Adviser to the Prime Minister on Cyber Security. The document, titled 'Words Matter: Australia's Cyber Security Lexic ...

There is no current legal obligation under the Privacy Act to notify either the Privacy Commissioner or affected individuals where you suffer a data breach. However, mandatory data breach notification laws will take effect in Australia from 22 February 2018. ...

The NSW Government has recently announced a new $11.4 million investment to address emerging technology challenges including cyber security. ...

There's a joke in the cyber security industry that there are two types of companies: those that know they have been hacked, and those that haven't yet found out. In November 2013, Target Corporation in the US learned this the hard way when it was told by law enforcement agencies that it had been sub ...

With an upward trend in large-scale ransomware attacks and the number of data breaches reported globally mandatory data breach notification will become law in Australia in February 2018 This will place privacy compliance and cyber security in sharp focus Partner Michael Park Lawyer Samantha Naylor ...