Cyber Vigilance Update

Today’s Connection

Cyber Engage Update - 30/11/2022 (#10) (#12)

Office Alert

Medibank Private Cyber Security Incident

The latest!

On Wednesday 9th November 2022 Medibank announced that a criminal has released files on a dark web forum containing customer data that is believed to have been stolen from Medibank’s systems.

Despite this incident remaining under investigation by Federal authorities, these releases continue including personal data such as names, addresses, dates of birth, phone numbers, email addresses, Medicare numbers (not expiry dates), in some cases passport numbers for international students (not expiry dates), and some health claims data. 


It’s important that you:

  • Remain vigilant and monitor all your devices and accounts for unusual activity
  • Report unusual activity to ReportCyberIDCARE(1800 595 160), and your bank
  • Be alert for scams that refer to Medibank Private
  • Do not click on links in suspicious emails or messages that reference Medibank Private

In addition, you can follow these simple steps to boost your cyber security:

  • Updateyour device and turn on automatic updates to ensure you always have the latest security protection
  • Turn onmulti-factor authentication to increase the security of your accounts
  • Set up and perform regularbackups to copy and store critical information
  • Implement access controls to limit user access to only what is needed on devices
  • Stay up to date on cyber security threats and trends withACSC Alert Service

Home Alert

False sense of Cybersecurity

Weak Passwords & Creatures of Habit

Despite increased cybersecurity education in the face of growing cyberattacks, consumers continue to choose weak passwords which in turn provides them with a false sense of security.

The Psychology of Passwords

The 2022 report 'The Psychology of Passwords' (LastPass) reveals that a false sense of password security pervades society regardless of generational status (though GenZ is apparently the best adopter of passwords but the worst offender regarding their strength).

An interesting statistic highlights that despite 65 per cent of respondents had undergone some form of cybersecurity education – whether it be through school, work, social media, books or online courses – some 62 per cent of them almost always or mostly used the same password, or variation of the same password!

Despite recognising this risk, only 12 per cent used different passwords for different accounts, whilst 62 per cent always or mostly used the same password or a variation. 

One bright spot is that compared to last year, people are now increasingly using variations of the same password, up to 41 per cent in 2022 from 36 per cent in 2021.

Protecting Your Digital Lives

Even in the face of a pandemic, where we spent more time online amid rising cyberattacks, there continues to be a disconnect for people when it comes to protecting their digital lives. The reality is that despite the prevalence of traditional cybersecurity education, it is not being put into practice for varying reasons. For both consumers and businesses, a new method of engaging families and employees with Cyber security is required.

This week's Training module


Cyber Threat Reporting (1/1)

Cyber Security Vigilance Program

Version 16-11-2022

Cyber Security Vigilance