International Conference on Cybercrime and Computer Forensics address

Good morning, ladies and gentlemen.

It is my pleasure to be here today to open the 5th International Conference on Cybercrime and Computer Forensics.

I thank the Australian Institute of Criminology and the Asia Pacific Association of Technology and Society for your invitation.

Australia is one of the most connected countries in the world – which also makes us vulnerable to malicious cyber activity in all its forms.

The conference’s theme this year—‘Cybercrime Research, Policy and Practice: the collaboration imperative’—highlights that governments cannot act alone to respond to this threat.

Strong cyber security presents enormous opportunities for Australians, with the internet-based economy contributing $79 billion to the Australian economy in 2014, a figure that is estimated to grow to $139 billion annually by 2020.

But unfortunately, we know that where there is profit to be made, criminals will seek to exploit any weakness to gain access to victims and extort funds.

Simply put, they are profiting from everyday Australians, and in the 21st century, cyberspace has become their new frontier.

Poor cyber security erodes trust and confidence in the online world, and can cause significant financial losses – conservatively estimated to cost Australians over $1 billion each year and the economic impact is estimated to be around $17 billion annually.

This Government has recognised that the threat of malicious cyber activity is serious and growing.

We have taken a leading multi-faceted approach to ensure the safety and security of all Australians online.

We are supporting small business to develop their cyber capabilities, we are boosting collaboration with industry domestically and globally, we are securing critical infrastructure, and importantly, we are building cyber resilience.

Protecting Australian businesses

Ransomware is an increasingly global cyber threat to all organisations, and one which could affect any organisation that does not have appropriate defences.

The WanaCry incident in mid-May and the more recent Petya ransomware incident, relied on end-users’ lack of preparedness and, indeed ignorance, to infect systems.

Cyber adversaries demonstrated that they have the capability and intent to do widespread and indiscriminate damage to ICT systems.

Fortunately, Australia did not see the widespread impact of WanaCry that other nations did.

But the incident was a wake-up call to all organisations to be on guard against cyber threats, and to have the appropriate measures in place to protect online information and systems.

To protect Australian businesses, CERT Australia—the national computer emergency response team—is working closely with industry to increase our understanding of the cyber threat landscape.

Last year CERT handled 11,260 cyber security incidents—this included 439 incidents involving systems of national interest and critical infrastructure, the majority of which is operated by the private sector.

Partnerships between government and industry

The key to Australia’s future prosperity is a strong and vibrant online economy.

This Government is taking a bold and creative approach to how government and industry can work together to protect Australia from cybercrime.

We want Australian businesses to grow and prosper through cyber security innovation, and for our nation to be a safe and secure place to do business.

Our ability to prepare for and respond to attacks continues to be world leading.

We were the first Government to put real money —$230 million —behind a National Cyber Security Strategy when it launched last year, and the Defence White Paper contains up to $400 million to enhance the cyber capabilities of our defence forces.

Importantly, this included the establishment of the Australian Cyber Security Centre – an initiative that brings together capabilities from across the Australian Government into a single location.

Government response to cyber security and international focus

These centres are a key element of the Government’s cyber security strategy, bringing together government, industry and academia to share information and build a national understanding of the cyber threats that we all face.

Australian industry is persistently targeted by a broad range of malicious cyber activity, risking the profitability, competitiveness and reputation of Australian businesses.

In 2016-17, the Australian Cyber Security Centre responded to 671 cyber security incidents on Australian systems.

These are just the voluntarily reported incidents – we don’t see them all, and the real number is almost certainly much higher.

The spectrum of malicious cyber activity ranges from online vandalism and cybercrime through to the theft of commercially sensitive intellectual property and negotiation strategies.

In recognition of the value of the work being done in these centres to enhance Australia’s public-private response to cybercrime, the Government is fast-tracking the rollout of the Joint Cyber Security Centres in capital cities across Australia.

The Brisbane Centre opened in February this year, and I will be touring it tomorrow. More Centres will be opened by early 2018.

Organisations can also minimise the risk of being infected by ransomware by taking the same precautions necessary to guard against malicious software in general.

The Australian Signals Directorate's Strategies to Mitigate Cyber Security Incidents is a prioritised list of practical actions organisations can take to make their computers more secure. Organisations can also seek assistance from the Cyber Security Centre.

It is up to all of us – government, industry and law enforcement − to stamp out safe havens for cybercriminals. We can’t do it alone.

The challenge lies in detecting the real identities of those behind the keyboards.

Law enforcement capabilities

In 2016-17, the AFP’s Cybercrime Operations have undertaken investigations into cyber intrusions into critical infrastructure, corporate espionage, attacks on Commonwealth Government services and the take down of criminal infrastructure platforms that were being used to launch global mass malware attacks.

We have seen an increase from 2015-16 to 2016-17 on a range of referrals to the Australian Federal Police to Cybercrime Operations:

  *   Intrusions have increased from 10 referrals in 15-16 to 15 referrals in 16-17.

  *   Extortion attempts have increased from 1 referral in 15-16 to 14 referrals in 16-17.

That is why cyber security and law enforcement measures will naturally remain at the forefront of our response.

Importantly, this Government has made significant investments in our agencies to ensure they can do they job, including:

  *   $20.4 million in extra funding for the Australian Federal Police  to strengthen its cyber defences;

  *   $16 million in extra funding to the Australian Criminal Intelligence Commission (ACIC) to expand its cybercrime intelligence capability;

  *   Launched the Critical Infrastructure Centre to work collaboratively across all levels of government to manage the risks of sabotage, espionage and coercion in our critical infrastructure; and

  *   Established AUSTRAC’s Fintel Alliance – a world-first collaboration between government and industry - to monitor and track the proceeds of cybercrime. This has put Australia at the forefront of the fight against terrorism financing and money laundering by identifying, targeting and deterring these criminals; and

In Australia, the AFP coordinates and leads the investigation of serious and organised criminal cyber activity impacting critical infrastructure or systems of national significance as well as collaborating with partners to investigate cyber activity impacting the Australian community.

The ACIC’s funding boost is also helping us to build a stronger picture of the identities and methodologies of cybercriminals targeting Australia—mostly originating from Russia and elsewhere in Eastern Europe.

This includes a class of offshore cybercriminals who specialise in targeting Australians.

Since receiving this funding, the ACIC has been able to discover the identities of more than 10 cybercriminals who have allegedly been involved in hundreds of cases of malicious activity across Australia.

These cybercriminals exploit the systems of businesses and everyday Australians to gain access to their information and divert their funds.

They are actively referring these to law enforcement for investigation.

Importantly, both the AFP and the ACIC are members of the international Five Eyes Law Enforcement Group Cyber Crime Working Group. The AFP is also currently the working group’s Chair.

This group focusses on the development of strategies and interventions to achieve the long-term disruption and degradation of elite cyber criminals, harmful online criminal forums and online illicit marketplaces.

By combining our expertise, information and tools, we can create a hostile environment for cybercriminals.

Government’s change of posture – offensive capabilities

But as these threats continue to evolve, so will we.

Between 1 January 2015 and 30 June 2017, the Australian Signals Directorate, as part of the Australian Cyber Security Centre, responded to 1,766 cyber security incidents on government systems which were considered serious enough to warrant operational responses.

Two weeks ago, the Prime Minister announced Australia’s single most significant change to our fight against cybercrime − directing the Australian Signals Directorate to extend the use its offensive cyber capabilities to disrupt, degrade, deny and deter organised offshore cyber criminals.

The use of offensive cyber capabilities will add to the Government’s crime-fighting arsenal and forms part of our broader strategy to shut down safe-havens for offshore cybercriminals and prevent new ones from starting.

This is important because we know that the fight against terrorism has also increasingly moved into cyberspace.

While law enforcement will of course remain at the forefront of combating cybercrime, the Government has used our offensive cyber capability to disrupt, deny and degrade the computers and computer networks of terrorists in military scenarios, such as supporting the Coalition operation against Daesh in Iraq and Syria.

Separately, we also partner with the digital industry, regulators and our international partners to remove terrorist propaganda on the internet.

We have invested over $21 million to tear down terrorist propaganda and stop the use of digital platforms being used to spread terrorist propaganda and recruit supporters.

Protecting Australians online

Cybercriminals invade Australian lives by injecting themselves into people’s everyday online activities.

They can reach into our lives more than ever before as more computers and phones are connected to the internet.

As I have outlined, cybercrime is a serious threat to Australia’s economy and national security, but it is also a threat to individuals, families, and of course our most vulnerable – our children.

Australia has a number of initiatives to help Australians stay safe online, and we have channels for reporting malicious cyber activity.

The Government recently passed legislation to expand the role of the Office of the eSafety Commissioner to empower all Australians to explore the online world safely.

The Commissioner has been tasked with:

  *   Delivering the Government’s commitment to improve the digital skills and confidence of senior Australians; and

  *   Establishing a national online complaints mechanism where victims can report intimate photos or videos that have been posted without their consent.

Protecting young Australians

But as I said, it’s our children that remain our most vulnerable online.

The Government is committed to ending all forms of online violence, and has made significant strides to combat the online sexual predation of children.

To this end, all jurisdictions have agreed on principles for nationally consistent criminal offences relating to the non-consensual sharing of intimate images.

The Government recently passed legislation, known as ‘Carly’s Law’, targeting online predators preparing or planning to cause harm to, procure or engage in sexual activity with a child.

This legislation serves as a deterrent, carrying a sentence of 10 years imprisonment for convicted offenders.

This new offence will allow law enforcement to take action sooner, before a child is harmed, and with greater consequence.

Another initiative protecting young Australians online is the ThinkUKnow program, which increases young people’s awareness of cyber safety in an increasingly complex and dynamic online environment.

ThinkUKnow—a partnership between the Australian Federal Police, state and territory police and business—is Australia’s first and only nationally delivered crime prevention program.

Conclusion

It is clear that for most of us, the internet is part of our daily routine to pay bills, read the newspaper, share photos on social media, shop online, and stay in contact with friends and family.

But despite its many benefits, it also poses many safety and security risks.

We must continue to work together and be agile in the fight against this increasingly pervasive and sophisticated threat.

This Government is committed to combatting cybercrime in all its forms, regardless of its target.

We will continue to collaborate with industry and academia, and I look forward to seeing these efforts realised.

It has been a pleasure to speak to you all today.

Thank you and enjoy the conference.

-END-