AUSCERT outlines budget impact on cybersecurity

AUSCERT, one of Australia's Computer Emergency Response Teams (CERT), has outlined recent federal budget changes and their impact on cyber security.

Dr. Ivano Bongiovanni, General Manager of AUSCERT, said: Significant budgets were allocated to government departments and agencies such as the Australian Taxation Office, Australian Prudential Regulation Authority, Australian Securities and Investments Commission, Parliamentary Services Authority, and independent statutory bodies such as the NDIS. Although the 2023 budget contained more specific references to protecting businesses, the ultimate beneficiaries of this budget appear to be the public, including more vulnerable groups. ”

Among the key announcements: $288 million has been allocated to enhance Australia's digital identity program. He has $40 million earmarked to support national efforts to support safer use of AI. $50 million has been allocated to improve myGov's fraud detection capabilities. ASIC will receive funding for the next four years to combat scams and online scams, which will require the introduction of industry regulations. Budget commitments to several government departments, including the Department of Foreign Affairs and Trade and the Australian Sports Foundation, will be extended over several years and highlight continued efforts to strengthen Australia's cybersecurity capabilities.

“The long-term commitment in this budget reflects the reality that protecting our nation's information assets is an ongoing program, not a one-time project,” Dr. Bongiovanni said. “Online fraud and identity theft are a major problem for all citizens, and addressing digital identity will strengthen consumer protection and make it harder for criminals to commit identity-based crimes. .”

AUSCERT is a member-funded, not-for-profit organization based at the University of Queensland. We provide enterprise support during cybersecurity incidents, threat intelligence services, and continuing education and development programs.

Cybersecurity impact summary:

The $39.9 million funding (over five years) will see Australia explore “safe and responsible” ways to deploy AI technology. This includes establishing new advisory bodies and preventing national security risks. $206.4 million over four years and $7.2 million per year on an ongoing basis to improve ASIC and APRA data capabilities and cybersecurity, and continue to stabilize business registration and modernize legacy systems. . Part of this funding will come from ASIC and APRA industry levies. The Australian Taxation Office (ATO) will receive $187 million over four years to strengthen its ability to detect, prevent and mitigate tax and superannuation fraud.

Funds include:

$78.7 million to upgrade information and communications technology to enable the ATO to identify and block suspicious activity in real time.
$83.5 million for a new compliance task force to recover lost revenue and intervene in cases of fraudulent refund claims.
$24.8 million to improve the management and governance of the ATO's anti-fraud activities, including improving how the ATO supports individuals who have fallen victim to fraud.
$187.8 million over four years from 2024 to 2025 ($11.1 million per year on an ongoing basis) to upgrade ICT and security on Department of Foreign Affairs and Trade premises.
$50 million over four years from 2024 to 2025 (and $5.2 million annually on an ongoing basis) to support myGov in continuing to respond to the results of the National Critical Infrastructure myGov user audit and advice from an independent advisory board. This will be used to strengthen the platform. myGov Support Tools, enhancements to myGov Fraud Detection, improvements to myGov Inbox and other communication tools, and help users make their myGov accounts more secure.
Budget for 10 years to 2024 national defense strategy The total amount is $50.3 billion and includes defense in the cyber field.
$288.1 million over four years for digital identity to enhance privacy and protect consumers with strong mitigations against fraud and identity theft.
$8 million over three years from 2024 to 2025 to help the Australian Sport Foundation complete technology upgrades, including strengthening the cybersecurity of its fundraising platform.
$12.8 million over four years from 2024 to 2025 (and $2.3 million annually on an ongoing basis) to strengthen information technology that supports business productivity and cybersecurity.
$160.7 million over four years from 2024 to 2025 ($24.6 million annually on an ongoing basis) to upgrade the National Disability Insurance Scheme (NDIS) Quality and Safety Board's information technology systems and increase NDIS participation. better protect the safety of people and reduce the regulatory burden on NDIS providers. , improve cybersecurity.
$206.4 million over four years from 2024-25 to improve Australian Prudential Regulation Authority (APRA) and Australian Securities and Investments Commission (ASIC) data capabilities and cybersecurity and continue to stabilize their businesses. ($7.2 million per year on an ongoing basis) to modernize registers and legacy systems.

The Government will continue to combat fraud and online fraud through the introduction of mandatory industry codes established under the Fraud Code Framework and the increased use of secure security codes by 2024-25. It is expected to provide $67.5 million annually (and $8.6 million annually on an ongoing basis). Electronic billing network.

This funding includes:

The Australian Competition and Consumer Commission (ACCC), the Australian Securities and Investments Commission (ASIC) and the Australian Communications and Media Authority (ACMA) will be awarded $37.3 million over four years from 2024 to 2025 ($8.6 million annually on an ongoing basis). Manage and operate (Dollar). Enforces mandatory industry regulations for regulated businesses to combat fraud on platforms and services, initially targeting digital platform services related to telecommunications, banking, social media, paid search engine advertising, and direct messaging. I was there.
$23.3 million will be paid over four years from 2024 to 2025 to help the Australian Taxation Office continue to monitor and operate a secure e-invoicing network.
$6.3 million will be paid to the ACCC in 2024-25 to improve public awareness of fraud and help the public identify, avoid and report fraud.
$1.6 million over two years, 2024-2025, for the Department of the Treasury to develop and enact a comprehensive fraud code framework.