Tech experts from The Australian National University (ANU) have created a blueprint so Australia and other Quad nations – India, Japan and the United States – aren’t held hostage to ransomware attacks.

The new research report by the ANU Tech Policy Design Centre urges the Albanese government to lead a recalibrated approach to combat ransomware globally and break its business model.
 
The report, which comes in advance of the forthcoming Quad Leaders’ Summit in Sydney, makes seven policy recommendations, informed by independent research and analysis, and consultation with 44 executives from industry, government and academia.
 
“The recent spate of high-profile cyber incidents on Optus, Medibank, and Latitude Financial catapulted ransomware into the headlines and the public conscience of Australia,” lead author and Director of the ANU Tech Policy Design Centre, Professor Johanna Weaver, said.
 
“Demand for the government to act to combat ransomware has never been stronger. Our report responds to that demand with specific actionable recommendations to government.
 
“The Quad Leaders meeting in Sydney on 24 May provides an opportunity for Australia to secure commitments from the United States, India and Japan to act together to break the business model of ransomware criminal groups.”
 
The researchers found strong support for Quad leaders to take the following three specific actions:

  1. Condemn ransomware criminals and articulate a joint policy position against payment of ransoms.
     
  2. Introduce common mandatory disclosure requirements compelling entities that pay ransoms to confidentially notify an appropriate authority.
     
  3. Harmonise cyber incident reporting requirements across Quad jurisdictions.

The researchers also found strong support for Australia to take the following four actions domestically,  either as part of its review of the Cyber Security Strategy or in concert with 37 like-minded countries under the International Counter Ransomware Taskforce:

  1. Introduce annual Cyber Security Board Statements (replicating the approach with the Modern Slavery Act) for ASX-listed companies.
     
  2. Establish a cyber insurance taskforce to examine means for the cyber-insurance market to incentivise improved cyber security and reduce the impact of ransomware. 
     
  3. Sanction individuals and entities most prolifically conducting significant ransomware incidents, in close coordination with like-minded countries.
     
  4. Step up international engagement to combat ransomware, especially vis-a-vis ‘safe haven’ states, in close coordination with like-minded countries.

The recommendations and a copy of the full paper are available online.

Top image: unlimit3d/stock.adobe.com

Contact the media team

James Giggacher

Associate Director, Media and Communications


You may also like

Article Card Image

Monster black hole devouring one sun every day

The fastest-growing black hole ever recorded – devouring the equivalent of one sun every day – has been discovered by ANU researchers.

Article Card Image

World-leading ANU scientists take up key advisory roles

Two exceptional ANU scientists have been appointed to leading Australian science organisations.  

Article Card Image

New method to more accurately spot underground nuclear tests 

A more accurate way of identifying underground nuclear tests, including those conducted in secret, has been developed by researchers at ANU.

Subscribe to ANU Reporter

Anu Logo

+61 2 6125 5111

The Australian National University, Canberra

CRICOS Provider: 00120C

ABN: 52 234 063 906

EDX Logo
APRU Logo
IARU Logo
Group of eight Australia Logo