Making Sense Of The Whole Census Cock-Up
In this guest post, Www.which-50 editor and B&T’s resident tech guru, Andrew Birmingham, casts his keen techy eye over this week’s Census debacle. And he’s deduced one thing – it was indeed a debacle…
My 11-year-old son recently implemented IP spoofing so he could hunt for Pokémon on Santa Monica Pier, roughly 12,000km away, from the comfort of his bedroom.
Stepping outside and blinking into the sunlight is so last year.
When he is not chasing Zubats and hatching eggs he is often to be found on Minecraft or CS Go where occasionally the competition gets a little fierce.
The kids routinely melt down when they get smashed by their opponents. That’s when lazy accusations of hacking and bots start getting bandied about. If it’s heated enough, they might well identify a competitor’s IP address and attack it with tools they download from the Internet.
Often a gang of them will pile on. It’s spectacular to behold.
YouTube provides all the training they need. Google delivers the arsenal.
Two things are worth noting. First, it’s so ridiculously easy to launch a distributed denial of service (DDoS) attack that even a child can do it.
And second, my son is still below the age of criminal liability.
As easy as it is to launch a DDoS, likewise the process of anticipating and mitigating against such an attack is straightforward these days.
If you are a giant and well-resourced government agency running your most important program for five years, it should be table stakes. Likewise, if you are a global technology vendor which has pocketed $10 million to prevent such an occurrence you should probably deliver on your promise.
We will know soon enough whether or not the old adage that no one ever got fired for buying IBM still holds true today.
Certainly there are plenty of public servants in the Queensland Health Department who suffered through a catastrophic payroll implementation a number of years ago who might be willing to share their views.
We don’t need to delve into the essential details of what happened on Tuesday night, as it has been covered thoroughly everywhere else.
The short version is simply this: the Australian Bureau of Statistics (ABS) — already under fire over its decision to build data profiles on every single Australian and hold them for four years — was brought low by a series of DDoS attacks that scuppered the Census and fuelled a gazillion #censusfail tweets.
There were four attacks specifically, according to the Bureau, the last of which lead them to abandon the program on the night. The Census site is still down.
Such a thoroughly predictable attack should have been manageable. Instead, the result was a shambles and a failure.
The more information that comes to light the worse it looks for both the ABS and IBM. For instance, Patrick Gray publisher of the excellent Risky Business cyber security podcast revealed yesterday in a post that both the vendor and the agency rejected an offer of DDOS projection from their upstream provider NexGen Networks.
Having at first defended the ABS, Prime Minister Malcolm Turnbull later unloaded on them and IBM.
He told a Sydney radio station, “There is no doubt there were failures in the system’s preparation for an entirely predictable denial of service attack. Measures that ought to have been in place to prevent these denial of service attacks were not put in place.”
For its part, the ABS is emphasising that a DDoS attack does not compromise data. That’s true and reasonable.
What is not reasonable is to go the next step and state unequivocally that no data was compromised. That’s because such attacks are often used as a feint for alternative attempts at network penetration.
Until a full analysis is conducted of everything that happened that night — not just the response to the DDoS — such guarantees are not worth a lick of spit.
Seriously, people?
According to Forrester Research’s John Brand, Forrester’s CIO Advisor, “This clearly demonstrates that large scale Internet platforms — whether hosted internally or on publicly available infrastructure — have to focus more seriously on threat intelligence and targeted near-real-time response capabilities.”
Brand says the the old approach of simply putting up barriers (e.g., multiple layers of firewalls) to provide confidence for protection doesn’t solve some of the underlying and very fundamental problems.
“The fact that these attacks happen either indicates a lack of understanding of the current threat landscape by the ABS and their service providers, or that an even more insidious approach to DDoS attacks has been developed that it is able to go completely undetected by current analysis and monitoring systems.”
Actually that last point seems a little unlikely to us, and is a little to flattering to the ABS and IBM.
Nevertheless, the point Brand is making is this: this situation should be a reminder that threat intelligence is not something to be ignored or underestimated.
Latest News
TV Ratings (18/04/2024): I’m A Celebrity Wins Prime Time And Key Demos
Aussie viewers can be a harsh lot at times. Only days after Ellie Cole bled her heart out, she has been sent packing.
Effie&co Launches New ConnectAsia Division To Help Aussie Brands Market To Asian Consumers Overseas & At Home
Not provided is advice on using chopsticks and not spilling ramen down your shirt.
Cashrewards Sets Out Stall For New CMO
Thinking of applying for the Cashrewards CMO gig? Here are some insider tips that, yes, are tantamount to cheating.
‘I Ask For The TV Industry To Stand Up And Defend Itself’ – Seven Boss James Warburton Steps Down
The Seven supremo heads for the exits after five years. Here's hoping the Spotlight team organised the farewell bash.
Poh! Jamie! Adriano! Paramount ANZ reveals its tasty plans for this year’s MasterChef
It's your fan's guide to this year's MasterChef! Although no tips on how to pronounce crudités or use a un fait-tout.
Dentsu’s iProspect Partners With MOOD Tea Ahead Of May Campaign Launch
We love a Mood Tea here at B&T. Although we do store old screws and nails in the International Roast caterer's tin.
Opinion: When Culture Starts Eating Itself: Navigating The Age Of Self-eating Nostalgia
Born boss David Coupland asks is adland going through a nostalgia period? But please, no repeats of Best Of Red Faces.
Who’s Going To Cannes?! The TikTok Young Lions Winners!
It's Aussie adland's next gen! They're off to Cannes with high hopes of bringing back a Lion & a foot-long Toblerone.
Adobe Launches Express Mobile App With Firefly AI
Want to be the coolest kid at Friday staff drinks but forgot your retro Nikes? This new Adobe wizardry may do the trick.
ThinkNewsBrands & IMAA Extend News Publishing Education In Brisbane
Industry duo takes its publishing roadshow to Brisbane. Was disappointed no male attendees were wearing walk socks.
B&T Chats With Wavemaker’s Provocative Pioneers On Their Cross-Pacific Sojourn
B&T TV heads to Wavemaker's Sydney digs to interview two staffers from its New York & LA digs. If that makes sense?
HoMie & Champion Launch “Give One. Get One” Campaign Supporting Youth Homelessness Via Town Square
Much like the fête's prized chutney wears a blue winners sash, so too should this top initiative from HoMie & Champion.
Thinkerbell Takes Us Back To Summer In Latest Work For XXXX
This beer ad wants to take you back to summer! Just minus any chance of a shark attack on your morning bus commute.
Cannes Lions Unveils 2024 Programme Featuring Queen Latifah, Jay Shetty & P&G’s Mark Pritchard
Are you one of the lucky ducks heading to Cannes in June? Check out the headliner acts you'll be queueing hours to see.
Scroll Media Recruits Costa Panagos From Twitch
Costa Panagos set to bring South American flair to the Scroll offices. Assuming that he is, indeed, South American.
Year13, Microsoft & KPMG Australia Launch AI Course For Gen Zs
Born around the 2000s? Need to amp up your AI creds? This guide's for you (although it's not really that age specific).
General Motors Snares Heath Walker From Scania
Do you rage about oversized American cars on our roads? You need to bail up Heath Walker at parties & industry events.
VML Launches New “Envoyage” Brand For Flight Centre
VML unveils new brand for travel operator Flight Centre. Alas, no sign of those paid actors pretending to be pilots.
Subaru Places Media Account Up For Review
Subaru puts media up for review, as adland journos get set for mandatory "agency drives off with..." headline.
TV Ratings (17/04/2024): Contestants Faced With Harsh Realities As Alone Australia Heats Up (Or Cools Down)
Alone still doing the business for SBS. Overly long train journeys not doing the business, but they persist anyway.
Ben Fordham Loses Number One Spot As Ray Hadley Celebrates 156th Ratings Win
The radio numbers are in! Discover who's off for a boozy lunch today & who's waiting for the dreaded HR death knock.
Gourmet Ice Cream Brand Connoisseur Launches New “Thrill Your Senses” Iteration, Via SICKDOGWOLFMAN
Rattling the old "truth in advertising" adage comes this ice-cream spot full of noticeably thin people.
Paramount’s Global Sales Boss: ‘Australia’s Converged Model Is A Blueprint For How I’d Like All Of Our Markets To Be’
Paramount's global sales boss gives local sales ops the thumbs up. Didn't weigh-in on the Lisa Wilkinson debacle.
TikTok Starts Testing Its Instagram Rival In Australia
In exciting news for piano playing cats & brattish pranks in shopping centres, TikTok unveils its Insta rival plans.
Man Wrongly Named By Seven As Bondi Killer Hires Lawyers
Struggling to save for a house deposit? Why not get wrongly identified by Sunrise!
Smartsheet Appoints Indie Agency Sandbox Media To Its Media Account
Can't stand your colleagues? Like to dob them in when they miss a deadline? These work management platforms are ideal.
Boss Not Letting You Come To Cannes In Cairns? Use This Business Case To Convince Them!
Stingy boss won't spring for a ticket to Cairns? Add this to your persuasive argument repertoire. Or grovel.
Alt/shift/ Brisbane Builds Portfolio With Ausbuild Creative, PR, Content & Social Account Win
The Brisbane comms/PR agency lands constructor Ausbuild. Also hoping for a discount on its new glass conservatory.
Young Guns Versus The Old Guard: Who Adds More Value to Our Industry?
Cannes In Cairns poking this hornet's nest in a lively debate. Just so long as the oldies can get up the stairs.
70% Of Aussies Don’t Have Green Power Plans ENGIE Says In Major Brand Campaign Via HERO
Are you the notorious "light leaver on-er" in your flatshare? Quell any infighting with this green energy news.
PrettyGood Launches Offering Brand & Media Solutions For Australasian SMEs
B&T applauds the charitable nature of this new agency. Although we'd hate to see it impact any Chrissie present sends.
A Blunt End: Dolphins Medicinal Cannabis Sponsorship At Risk
Yes, it's another NRL drug story. Yet, thankfully it doesn't involve coke in Kuta during the off-season.
Slew Of New Creative Hires At Leo Burnett Australia
Ahhh, all black! The outfit of choice for agency creatives, David Jones staff and everyone in Melbourne.
Under Armour Unveils Local “Live in UA” Campaign
American apparel brand set for yet another tilt at the Aussie market, as Nike declares "we'll see about that".
Pepsi Launches New Look, Refreshing Classic Fashion Staples Via Special PR
Are you always the bridesmaid, never the bride, as the old saying goes? How do you think Pepsi feels?
Pure Blonde Returns To A Place Purer Than Yours In New Campaign Via The Monkeys
B&T's always been a huge fan of the 'drink yourself thinner' diet plan. So big thanks to Pure blonde, vodka & tequila.