Show download pdf controls
  • 5 June 2018

    The Cyber Security Stakeholder Group meeting was held on Tuesday 5 June 2018.

    The information below is a summary of topics discussed at the meeting.

    Introduction

    The new co-chair for the Cyber Security Stakeholder group is Jamie Norton, Chief Information Security Officer and Assistant Commissioner, Information & Cyber Security at ATO.

    Data Breaches

    Recent external breach reports revealed business email compromise (BEC) as the most prominent form of attack resulting in reported data breaches.

    These reports show that end users had not implemented multifactor authentication on their payroll systems which would have significantly reduced the risk of data compromise. Use of multifactor authentication may be optional for some Digital Software Provider products however its use for businesses including tax professionals is highly recommended due to the value and volume of the data they hold.

    The ATO provided an overview of the first quarterly report (PDF 390KB)External Link on the Notifiable Data Breach Scheme (NDBS) from the Office of the Australian Information Commissioner (OAIC). Most noticeable was the fact that 14% of reported breaches involved TFN data with the ATO aware of only one incident.

    Tax Time Cyber Security Webinar

    The ATO and Australian Cyber Security Centre (ACSC) announced the joint presentation of a pre-tax time webinar on Cyber Security. This webinar aimed to improve your cyber security practices.

    Note: The Webinar is now live on ATOtvExternal Link.

      Last modified: 27 Nov 2018QC 54345