OVIC updates security incident notification scheme details
The Office of the Victorian Information Commissioner (OVIC) has released updated information on the information security incident notification scheme.
The scheme’s aim is to centrally coordinate notification of information security incidents within Victorian Government.
It requires agencies or bodies to “notify OVIC of incidents that compromise the confidentiality, integrity or availability of public sector information with a ‘limited’ business impact or higher on government operations, organisations or individuals”.
According to OVIC, incident notification helps with “developing a comprehensive security risk profile of the Victorian Government which can be used for trend analysis and understanding of the threat environment”.
De-identified outcomes of analyses are shared with Victorian Government agencies and bodies, which help them perform their own risk assessments.
Full details are available on the OVIC website.
ACSC releases new guidance on bulletproof hosting providers
The ACSC has released new guidance on defence against potential cybercriminal activity enabled by...
IT security governance still lacking for many NSW agencies: report
A recent audit report finds there are still significant deficiencies in IT controls and...
Cisco devices still being exploited by BADCANDY since 2023
The ACSC has warned that cyber actors are still installing an implant dubbed 'BADCANDY'...
