The recent ACCC report revealing Australians incurred a staggering loss of $2.7 billion in 2023 comes as no shock. Gruber emphasised the revelation underscores a concerning trend that the group has been observing for some time.
“It is frustrating to know that it is often the general citizens that are targeted with cybercrime which is a result of large organisation’s data breaches when not properly disposing of their redundant IT equipment,”
“Mums and dads at home being defrauded because their personal details or even credit card details are just “lost” with old IT equipment,” Kurt said.
Worldview Group incorporates WV Technologies, a company responsible for disposing thousands of Australia’s ICT devices each year, including state and federal departments.
Kurt said it is estimated that one in every 250 ICT devices discarded by the government, critical industry sectors and their supply chains contain sensitive or classified data.
“These devices often end up in international markets, or locally – accessible to adversarial State actors or criminal organisations.”
“There is lack of ownership when it comes to the secure disposal of data, and it definitely places our country at risk of cybersecurity breaches,” Kurt said.
Whilst there exists the Protective Security Policy Framework (PSPF) and the Information Security Manual (ISM) which direct government and critical industry to use NAID AAA certified recyclers to destroy and sanitise data at end of life, there remains confusion over ownership of accountability.
“We must start getting serious about cybersecurity. Technology is critical to the operations of our government and industry, and even community, but this comes with responsibility,,”
“We must acknowledge that with data comes disposal, and we hope that we may begin to see progress under this government toward necessary end-of-life data policies and practices.,” Kurt said.
