Making Sense Of The Whole Census Cock-Up
In this guest post, Www.which-50 editor and B&T’s resident tech guru, Andrew Birmingham, casts his keen techy eye over this week’s Census debacle. And he’s deduced one thing – it was indeed a debacle…
My 11-year-old son recently implemented IP spoofing so he could hunt for Pokémon on Santa Monica Pier, roughly 12,000km away, from the comfort of his bedroom.
Stepping outside and blinking into the sunlight is so last year.
When he is not chasing Zubats and hatching eggs he is often to be found on Minecraft or CS Go where occasionally the competition gets a little fierce.
The kids routinely melt down when they get smashed by their opponents. That’s when lazy accusations of hacking and bots start getting bandied about. If it’s heated enough, they might well identify a competitor’s IP address and attack it with tools they download from the Internet.
Often a gang of them will pile on. It’s spectacular to behold.
YouTube provides all the training they need. Google delivers the arsenal.
Two things are worth noting. First, it’s so ridiculously easy to launch a distributed denial of service (DDoS) attack that even a child can do it.
And second, my son is still below the age of criminal liability.
As easy as it is to launch a DDoS, likewise the process of anticipating and mitigating against such an attack is straightforward these days.
If you are a giant and well-resourced government agency running your most important program for five years, it should be table stakes. Likewise, if you are a global technology vendor which has pocketed $10 million to prevent such an occurrence you should probably deliver on your promise.
We will know soon enough whether or not the old adage that no one ever got fired for buying IBM still holds true today.
Certainly there are plenty of public servants in the Queensland Health Department who suffered through a catastrophic payroll implementation a number of years ago who might be willing to share their views.
We don’t need to delve into the essential details of what happened on Tuesday night, as it has been covered thoroughly everywhere else.
The short version is simply this: the Australian Bureau of Statistics (ABS) — already under fire over its decision to build data profiles on every single Australian and hold them for four years — was brought low by a series of DDoS attacks that scuppered the Census and fuelled a gazillion #censusfail tweets.
There were four attacks specifically, according to the Bureau, the last of which lead them to abandon the program on the night. The Census site is still down.
Such a thoroughly predictable attack should have been manageable. Instead, the result was a shambles and a failure.
The more information that comes to light the worse it looks for both the ABS and IBM. For instance, Patrick Gray publisher of the excellent Risky Business cyber security podcast revealed yesterday in a post that both the vendor and the agency rejected an offer of DDOS projection from their upstream provider NexGen Networks.
Having at first defended the ABS, Prime Minister Malcolm Turnbull later unloaded on them and IBM.
He told a Sydney radio station, “There is no doubt there were failures in the system’s preparation for an entirely predictable denial of service attack. Measures that ought to have been in place to prevent these denial of service attacks were not put in place.”
For its part, the ABS is emphasising that a DDoS attack does not compromise data. That’s true and reasonable.
What is not reasonable is to go the next step and state unequivocally that no data was compromised. That’s because such attacks are often used as a feint for alternative attempts at network penetration.
Until a full analysis is conducted of everything that happened that night — not just the response to the DDoS — such guarantees are not worth a lick of spit.
Seriously, people?
According to Forrester Research’s John Brand, Forrester’s CIO Advisor, “This clearly demonstrates that large scale Internet platforms — whether hosted internally or on publicly available infrastructure — have to focus more seriously on threat intelligence and targeted near-real-time response capabilities.”
Brand says the the old approach of simply putting up barriers (e.g., multiple layers of firewalls) to provide confidence for protection doesn’t solve some of the underlying and very fundamental problems.
“The fact that these attacks happen either indicates a lack of understanding of the current threat landscape by the ABS and their service providers, or that an even more insidious approach to DDoS attacks has been developed that it is able to go completely undetected by current analysis and monitoring systems.”
Actually that last point seems a little unlikely to us, and is a little to flattering to the ABS and IBM.
Nevertheless, the point Brand is making is this: this situation should be a reminder that threat intelligence is not something to be ignored or underestimated.
Latest News
Sydney Comedy Festival: Taking The City & Social Media By Storm
Sydney Comedy Festival 2024 is live and ready to rumble, showing the best of international and homegrown talent at a host of venues around town. As usual, it’s hot on the heels of its big sister, the giant that is the Melbourne International Comedy Festival, picking up some acts as they continue on their own […]
Global Marketers Descend For AANA’s RESET For Growth
The Australian Association of National Advertisers (AANA) has announced the final epic lineup of local and global marketing powerhouses for RESET for Growth 2024. Lead image: Josh Faulks, chief executive officer, AANA Back in 2000, a woman with no business experience opened her first juice bar in Adelaide. The idea was brilliantly simple: make healthy […]
Is Meta’s New AI Chatbot Too Left-Wing?
Meta's chatbot accused of being left-wing after being caught wearing a Che Guevara T-shirt & listening to Billy Bragg.
TV Ratings (23/04/2024): Why Did No One Tell Angela That Farmer Wants A Wife Is Set On A Farm?
As wonderful as this headline is, let's face it, we all know an 'Angela', don't we?
PubMatic Unveils New AI Partnership To Turn Social Posts Into Ads For Any Digital Channel
Here's some nifty tech for turning social posts into ads. Assuming said posts aren't one-star character assassinations.
Intuit Mailchimp Makes A Splash With Its First Australian Brand Campaign
Ever laugh along at a gag you didn't get so as not to appear dumb? Get ready for more feigning with this new work.
GumGum’s Rob Hall: Advertisers Can No Longer “Rely On Binary Descriptions” Of Consumers
If anyone's got their finger on adtech's pulse, it's Rob Hall. He also avoids using the good paper in the office printer
Mastercard Nabs Florencia Aimo From Marriott International
Marriott International's Florencia Aimo jumps from the hotel business to the exploitative credit card one.
Bastion Agency Appoints Cheuk Chiang As New ANZ CEO
Cheuk Chiang takes the reins over at Bastion Agency. But not the rains down in Africa.
Spotlight On Sponsors: Major Sponsorship Wins After A Disappointing Week In Sport
B&T continuing our deep dive into local sport sponsorships & that's despite not a single offer of a free ticket as yet.
Macca’s Marketing Director, Samantha McLeod On Big Mac Chant: “What Was Once Old Is Now Cool Again”
Macca's using the power of nostalgia in latest Big Mac campaign. Well, only for those who've ever eaten one sober.
World Premiere Of Midnight Oil: The Hardest Line To Open Sydney Film Festival 2024
Oil's biopic to open Sydney Film Festival. Here's hoping Molly Meldrum will take his pants down at the premiere.
Entries Are Now Open For The 2024 Brandies, IntelligenceBank’s Annual Brand Marketing Awards
The Brandies are, of course, a prestigious marketing gong and not the mystery tipple favoured by nannas everywhere.
The Fred Hollows Foundation Appoints Ardent For PR
Yes, we all like to have a joke at PR's expense. But sometimes it does important work, like this.
AI, eCommerce & Marketing Specialists Are In Increased Demand By Businesses, New Data From Fiverr Shows
Has your philosophy & anthropology degree left you with nothing but a huge HECS debt? Here's what you should've studied.
Perth’s First 3D Anamorphic Billboard Arrives Courtesy Of oOh!media
Do you love a buzzword? Now you can add anamorphic to the list as it relates to billboards, not a colleague's ears.
MasterChef Australia & Crown Resorts Launch Unique Dining Experience With ALUMNI
A pop-up restaurant staffed by MasterChef contestants! That's fine dining prices for first-year apprentice chef cuisine!
Amanda Laing Announces Resignation From Foxtel Group
Foxtel's chief commercial & content officer heads for the exits. Read nice things the bosses said about her right here.
The Lost Letters From Our Diggers: News Corp Unveils ANZAC Day Special
It's nice when brands respectfully acknowledge ANZAC Day.
Howatson+Company Acquires Akkomplice
Large indie acquires a slightly smaller indie. Much like a shark eating a tuna, just with less thrashing and blood.
Google Delays Third-Party Cookie Deprecation Again
In good news for the sale of picture library biscuit photos, Google continues to tease over the end of cookies.
Education A Low Priority For Aussies More Concerned With Cost Of Living Forethought Study Reveals
Study finds Aussies cutting back on education due to cost of living. Booze & Uber Eats sales remain largely unaffected.
“I’m Still The Same Person That I Was”: Rikki Stern Says “Fucc It” To Cancer Stereotypes
B&T always happy to promote the anti-cancer cause. Even brands that massively overdo it with the hot pink.
The Unapproved Climate Certification Allegedly Causing Mass Greenwashing
Are you left flummoxed in the canned tuna & free range eggs aisle? Just wait till this green certification gets up.
TV Ratings (22/04/2024): Fans Mock “Over The Top” Reaction To New MasterChef Judges
MasterChef returns for its 2024 season. B&T stands by putting peppercorns in Gravox & no one will be any the wiser.
Dentsu Restructure: Muddle, Harvey & Johnston Take Leadership Baton As Bass & Yurisich Exit
A large broom has swept through Dentsu's local ops this morning, taking with it some big names & the air con's cobwebs.
Industry Shares Trends Shaping The Industry This International Creators Day
B&T's asking adland creators to reveal their top trends. And it's not good news for your Jenny Kee cardigan collection.
Mable Extends HOYTS Sensory Screenings Partnership
Mable has extended its HOYTS sensory screening partnership. Vigorously defends its two-star Oppenheimer review.
Orphan Launches ‘They Need Our Help. We Need Yours’ For Children’s Cancer Institute
Anything to do with childhood cancers has B&T's 110% support. That said, we do ignore the red meat & alcohol warnings.
Smile Team Orthodontics & Keep Left Collaborate On Smile-Inducing Campaign
As parents would attest, given the cost of orthodontics you'd expect this campaign to be a lavish production indeed.
Opinion: How Video Calls Neglect Learning Diversity
Need an excuse to duck out of a video call this arvo? Show this to your boss.
DoubleVerify Achieves First-Of-Its-Kind Responsible AI Certification From TrustArc
DoubleVerify receives responsible AI certification. However, not its robotic vacuum that's been seen menacing the cat.
Smile For A Good Cause: The Social Media Campaign Giving Back To The Community
Are you known as the office Austin Powers? More for you teeth than shagability? Get snappy new fangs with this news.
Elon Musk Mocks Albo After ESafety Wins Court Injunction Against X
Albo's 2024 from hell continues - Rabbitohs in crisis, down in the polls and now feuding with world's richest man.
Real Estate Developer In Hot Water Over “Sexually Exploitative” OOH Campaign
Real estate agents again tops in the 'least trusted profession' polls, nudging used car salesmen & ad creatives.
Epsilon’s Shane Hanby: Post-Cookie Era Relies On “Teamwork” Between Brands, Marketers & Tech
This pro predicts more "teamwork" in a post-cookie era. Which spells bad news for the uncooperative or plain stubborn.