AusCERT warns e-health records can be hacked
Australia’s emerging personally controlled e-health record (PCEHR) system will be a target for hackers keen to harvest its sensitive personal information, computer emergency response team AusCERT has told a Senate inquiry.
No matter the protections put around the PCEHR records themselves, an AusCERT submission said the design of the system to allow secure Internet access was misleading because consumers accessing their information online would leave their personal data open to compromise.
Risks could arise “if individuals do not understand the risks to their e-health record online when using a computer which is not properly secured,” the organisation’s submission noted, warning that the government “is promoting the benefits of PCEHR over the Internet on the basis that it will be secure...These statements cannot be assured and are misleading.”
A stronger focus on endpoint security would be necessary to meet the government’s assurances of data security, the organisation warned, noting that efforts to date have mainly focused on back-end security.
Identity at the edge
How the sixth annual identity management day highlights the new frontiers of trust.
Updating the Essential Eight for the age of artificial intelligence
The Australian Government's Essential Eight framework needs to be updated for the age...
Rethinking endpoint security: the overlooked risk in hybrid public sector work
As we approach Data Privacy Week, it's an opportune moment for public sector agencies to...
