Tech experts from The Australian National University (ANU) have created a blueprint so Australia and other Quad nations – India, Japan and the United States – aren’t held hostage to ransomware attacks.

The new research report by the ANU Tech Policy Design Centre urges the Albanese government to lead a recalibrated approach to combat ransomware globally and break its business model.
 
The report, which comes in advance of the forthcoming Quad Leaders’ Summit in Sydney, makes seven policy recommendations, informed by independent research and analysis, and consultation with 44 executives from industry, government and academia.
 
“The recent spate of high-profile cyber incidents on Optus, Medibank, and Latitude Financial catapulted ransomware into the headlines and the public conscience of Australia,” lead author and Director of the ANU Tech Policy Design Centre, Professor Johanna Weaver, said.
 
“Demand for the government to act to combat ransomware has never been stronger. Our report responds to that demand with specific actionable recommendations to government.
 
“The Quad Leaders meeting in Sydney on 24 May provides an opportunity for Australia to secure commitments from the United States, India and Japan to act together to break the business model of ransomware criminal groups.”
 
The researchers found strong support for Quad leaders to take the following three specific actions:

  1. Condemn ransomware criminals and articulate a joint policy position against payment of ransoms.
     
  2. Introduce common mandatory disclosure requirements compelling entities that pay ransoms to confidentially notify an appropriate authority.
     
  3. Harmonise cyber incident reporting requirements across Quad jurisdictions.

The researchers also found strong support for Australia to take the following four actions domestically,  either as part of its review of the Cyber Security Strategy or in concert with 37 like-minded countries under the International Counter Ransomware Taskforce:

  1. Introduce annual Cyber Security Board Statements (replicating the approach with the Modern Slavery Act) for ASX-listed companies.
     
  2. Establish a cyber insurance taskforce to examine means for the cyber-insurance market to incentivise improved cyber security and reduce the impact of ransomware. 
     
  3. Sanction individuals and entities most prolifically conducting significant ransomware incidents, in close coordination with like-minded countries.
     
  4. Step up international engagement to combat ransomware, especially vis-a-vis ‘safe haven’ states, in close coordination with like-minded countries.

The recommendations and a copy of the full paper are available online

Top image: unlimit3d/stock.adobe.com

Contact the media team

James Giggacher

Associate Director, Media and Communications


You may also like

Article Card Image

Lighting up internet cables to help better prepare for earthquakes

A first-of-its-kind experiment could help make sure communities around the world are better prepared to deal with earthquakes. 

Article Card Image

ANU to boost the global hunt for gravitational waves

A new ANU facility will help scientists detect some of the most extreme events in the universe and put Australia "front and centre" of the exciting field of gravitational wave science.

Article Card Image

Early humans’ migration out of Africa could be crucial to modern medicine

Evolutionary changes that helped our early ancestors survive the first migration out of Africa could hold important clues for modern medicine.

Subscribe to ANU Reporter

Anu Logo

+61 2 6125 5111

The Australian National University, Canberra

CRICOS Provider: 00120C

ABN: 52 234 063 906

EDX Logo
APRU Logo
IARU Logo
Group of eight Australia Logo