Quote Of The Year

Timeless Quotes - Sadly The Late Paul Shetler - "Its not Your Health Record it's a Government Record Of Your Health Information"

or

H. L. Mencken - "For every complex problem there is an answer that is clear, simple, and wrong."

Tuesday, October 04, 2022

Commentators and Journalists Weigh In On Digital Health And Related Privacy, Safety, Social Media And Security Matters. Lots Of Interesting Perspectives - October 04, 2022.

-----

This weekly blog is to explore the news around the larger issues around Digital Health, data security, data privacy, AI / ML. technology, social media and any related matters.

I will also try to highlight ADHA Propaganda when I come upon it.

Just so we keep count, the latest Notes from the ADHA Board were dated 6 December, 2018 and we have seen none since! It’s pretty sad!

Note: Appearance here is not to suggest I see any credibility or value in what follows. I will leave it to the reader to decide what is worthwhile and what is not! The point is to let people know what is being said / published that I have come upon, and found interesting.

-----

https://www.theaustralian.com.au/inquirer/big-parties-are-watching-you-and-your-data/news-story/6594373959e94f44f79d39ecd71ab674

Big parties are watching you – and your data

PETER VAN ONSELEN

12:00AM October 1, 2022

Both major parties are pouring scorn on Optus for its customer-data breach, rightly so. If reports are accurate that the company’s defences weren’t up to scratch, that’s simply not good enough.

We are also hearing calls for Privacy Act reforms to better protect citizens whose personal information is retained by businesses. There’s a growing clamour as politicians share their anger and concern over what has happened.

But are these politicians hypocrites? Yes, they absolutely are.

Major political parties operate sophisticated voter-tracking software without the consent of voters and their databases contain enormous amounts of personal information about all of us. Every major-party member of parliament has voter-tracking software operating in their office and they won’t let you see it even if you ask.

Labor’s database is named Campaign Central (previously Electrac), the Coalition’s database is named Feedback. Political parties get automatic electronic access to the electoral roll, with monthly updates also freely provided by the Australian Electoral Commission.

Basic information these party databases have includes our name, date of birth, address and, for many of us, a lot more. Parties seek to harvest as much information about us as they can, with the aim of using such details to better target campaigning to win our votes.

-----

https://www.theaustralian.com.au/world/the-times/fake-image-ai-bots-have-been-let-loose-on-the-world/news-story/ea8158fa7b65c0cfbb8c7f5b4a1c46e4

Fake image AI bots have been let loose on the world

By Will Pavia

The Times

5:28PM October 1, 2022

Ever since mobile phones were fitted with cameras, anyone making an outlandish claim about a fish they had caught or the crowd size at their presidential inauguration would be met with a chorus of sceptics, demanding photographic proof with the phrase: “Pic or it didn’t happen”.

This week, however, the process of proving anything at all became a lot more complicated, with the launch of text-to-image services that generate artificial photographs, or even a video, in response to a few descriptive words punched into a text box.

On Wednesday, a San Francisco laboratory called Open Ai released Dall-E, a programme powered by AI. The following day, Google announced its own 3D image generator and Meta, the parent company of Facebook, offered a programme that could produce a few seconds of fake video.

The services, alongside two rival text-to-image generators launched in July and August, are expected to flood the internet with fake images. There are fears they could supercharge the spread of fake news.

-----

https://www.innovationaus.com/model-facial-recognition-law-would-ban-high-risk-use-in-australia/

Model facial recognition law would ban high-risk use in Australia


Joseph Brookes
Senior Reporter

27 September 2022

Australia urgently needs dedicated facial recognition laws to stop the current slide towards a surveillance state and reduce the serious risk of error in high stakes applications like policing, according to new analysis.

The report from the University of Technology Sydney is calling for the Attorney General’s Department to adopt a model law for facial recognition technology (FRT) that would see a regulator develop technical standards, oversee mandatory human rights risk assessments, and provide advice to developers, deployers and affected individuals.

Both the regulator and an individual affected by an FRT developer or user would have review rights with determinations possible.

It would be a marked shift in Australia, where no dedicated FRT law exists. The current limited regulation of FRT comes from a mix of privacy and anti-discrimination laws, and some state-level human-rights laws.

-----

https://www.innovationaus.com/a-mygov-makeover-this-pig-will-need-more-than-lipstick/

A myGov makeover? This pig will need more than lipstick

Glenn Archer
Contributor

29 September 2022

Just over a week ago, I upgraded my three-year-old iPhone to a shiny new model. It was a pretty smooth experience until I went to use the myGovID app so that I could, as you might expect, log into myGov.

While I anticipated that it might be necessary to reauthenticate myself/phone to the app, I never dreamed I’d need to also redo my biometric, scan my passport and enter my Medicare card number. This was hardly the user-centered experience I was led to believe was to be the future.

Not so much the promise of “set up once and use it again and again”, and more like “set up again and again…”.

The myGovID is the digital identity that is the key to the portal that is myGov. It will progressively take the place of the myGov account sign-in using username and password. However, the experience of having to reverify my identity to my iPhone was just my most recent of several examples of myGov failing to meet one of its most basic criteria – that being ease of use.

-----

https://www.croakey.org/beyond-optus-sounding-the-alarm-about-another-critical-data-hack/

Beyond Optus: sounding the alarm about another critical data hack

·         Melissa Sweet

·         George Newhouse and Duncan Fine

·         Wednesday, September 28, 2022

Introduction by Croakey: A delay by Optus in informing the Federal Government that people’s Medicare details are part of a massive data breach has been described by Federal Health and Aged Care Minister Mark Butler as “deeply unfortunate”.

He told ABC radio this morning that the Government was “particularly concerned that we were not notified earlier and consumers were not notified earlier about the breach of Medicare data as well”.

“All the resources of government are going into protecting consumers in the face of this extraordinary breach of their personal data,” he said.

Meanwhile, Adjunct Professor George Newhouse and Duncan Fine, two of the founders and directors of the National Justice Project, are concerned that far less attention has been paid to a data breach earlier this year affecting NDIS participants – many of whom still have not been notified.

Now is the time, they say, for the Albanese Government to address our “weak and hopelessly out-of-date” privacy laws.


George Newhouse and Duncan Fine write:

As many Optus customers are finding out to their horror this week, we are coming to grips with our modern globally connected world where personal information can be stolen and fall into the wrong hands.

While the Optus case deserves blanket media coverage, spare a thought for the victims of a more serious but less reported data hack.

Recently, thousands of Australians living with a disability had their extremely sensitive and personal information (including health details) accessed and stolen after a cloud-based server of a private company was hacked.

The company, known as CTARS, is a cloud-based client management system for the NDIS which is used by out of home care services. In May 2022, CTARS became aware of the data breach. An unauthorised third party had gained access to their systems and claimed to have taken a significant volume of data.

-----

https://digitalhealth.org.au/blog/the-changing-role-of-leaders-in-digital-health-positioning-cnmios-for-success/

The changing role of leaders in digital health: Positioning CNMIO’s for success

Sep 26, 2022 | Aged care, Community Chats, Community of Practice, Data, Digital Health, eHealth, Innovation, Nursing & Midwifery Informatics

Dr Helen Almond FAIDH

Senior Lecturer, Australian Institute of Health Service Management, College of Business and Economics (COBE), University of Tasmania

For more than 25 years, the informaticist role has been steadily evolving and growing in importance. Healthcare organisations have undergone significant change in recent years, including the need to incorporate an increasing range of technological advances into their day-to-day operations.

Without a doubt, innovations such as clinical information system digitalisation, population health, big data, and precision medicine are reshaping the current health and care landscape (Ellis, 2018). These advancements are also changing the role of chief information officers (CIOs); those individuals in charge of ensuring the safe and secure implementation of technology in the workplace and must adapt to new demands and challenges posed by the health and care workforce and users. The majority of large healthcare organisations have finished implementing electronic medical records (EMRs). The next challenge for CIOs and their immediate teams is to ensure that EMRs are fully utilised (Ellis, 2018).

CNMIOs (chief nursing and midwifery information officers) provide expert clinical leadership as well as a critical link between digital health and organisational change. However, because of the CNMIO’s reliance on data, the CNMIO must be wary of documentation overload. The amount of information that the nursing and midwifery workforce is required to document has grown exponentially since the implementation of EMRs. The CNMIO should determine and advocate for the bare minimum of documentation required to reduce paperwork while ensuring safety and quality and meeting regulatory and accreditation requirements (Parsi, 2020).

-----

https://www.theaustralian.com.au/business/first-question-in-the-telco-hack-why-did-optus-have-so-much-of-our-data/news-story/6ff8996f162e3c002c776ee5a28e7dae

First question in the telco hack: Why did Optus have so much of our data?

John Durie

10:00PM September 30, 2022

Questions over the tragic Optus data theft start with just why the phone company had and kept so much of our data in the first place.

Data is a valuable asset and maybe now people realise what can go wrong when their own data is kept by someone, perhaps they might question next time a company wants their information and certainly will better understand the value of data.

In the case of the digital platforms like Google, Meta and Apple the reason why they want your data is simple — to drive advertising revenue and product development — but in their case often they are collecting the data without you even knowing about it.

Most people are either oblivious or don’t care, but this should change post Optus.

Amid Treasurer Jim Chalmers’ preparation for his October 25 budget, on Friday he received the ACCC’s recommendations on just what sort of regulatory changes are needed to control the digital platforms.

-----

https://www.smh.com.au/technology/how-much-would-optus-pay-to-replace-everyone-s-id-20220930-p5bm80.html

How much would Optus pay to replace everyone’s ID?

By Tim Biggs

September 30, 2022 — 3.56pm

With millions of identity documents exposed in Optus’ data breach, many Australians now need to replace their cards and passports to make sure they can’t be used by criminals for fraud and theft.

And with the Prime Minister confirming on Friday that Optus, and not taxpayers, would foot the bill for at least the new passports, just how big a bill could Optus end up with to clean up the mess?

Estimating these numbers requires a healthy dose of assumptions and guesswork, given the lack of solid details on what data was stolen. It’s believed up to 9.8 million Australians had their personal data compromised in the breach, but only 3 million or so had identity documents like passports or drivers licences exposed, and 37,000 Medicare numbers.

It’s impossible to tell at this point how many individual documents Optus would have to pay to replace, especially given some people would have only had a passport or a licence exposed and not both, and some of the data will likely be out of date. But let’s assume an extreme outcome where the telco had to pay to replace 3 million passports, 3 million drivers licences and 15,000 Medicare cards (22,000 of the exposed numbers were expired).

-----

https://www.theaustralian.com.au/nation/how-australia-responded-rapidly-to-optus-breach/news-story/ca7a99162dbc1305936af0c19a9af565

How Australia responded rapidly to Optus breach

Ellen Whinnett

12:00AM October 1, 2022

It was late on Wednesday, September 21, when a message pinged into the Australian Signals Directorate.

The shadowy organisation, first formed to crack Japanese radio messages in World War II but now the Australian government’s frontline cyber security agency, runs a 24/7 “watch operations centre’’ in Canberra scanning for cyber attacks.

The message to the watch centre that night was from telecommunications company Optus, reporting it had been the victim of a cyber attack.

A cyber intruder, apparently calling themselves Optusdata, had got into the telco’s database and stolen the personal information of almost 10 million current and former customers, about 40 per cent of the Australian population.

-----

https://www.smh.com.au/politics/federal/optus-hack-shows-albo-dextrous-pm-can-make-the-right-calls-20220929-p5blza.html

Optus hack shows Albo-dextrous PM can make the right calls

Peter Hartcher

Political and international editor

October 1, 2022 — 5.00am

Optus first made contact with the federal government’s cyber protection agency on Wednesday last week to report a large-scale data theft. But it said it was not a live attack. The company told the Australian Cyber Security Centre that it had already closed the open “window” that the thief had climbed through.

That window was a piece of software that allows two different computer systems connected through the internet to talk to each other, called an application programming interface. It was clear from the outset that this was a straightforward breach.

So when Optus claimed publicly that it was a “sophisticated attack” that had penetrated layers of encryption, the government’s experts privately were aghast. Independent experts scoffed publicly at the Optus claim; some argued that it wasn’t even a hack, more like shoplifting unprotected goods than safe-breaking.

It was just the beginning of the frustration that led the Minister for Cybersecurity, Clare O’Neil, to declare this week that the government was “incredibly angry” with Optus.

As the breadth and depth of the breach started to emerge, the case quickly was handed to the elite cyberwarriors in the centre’s parent agency, the Australian Signals Directorate.

-----

https://www.theaustralian.com.au/world/the-times/preparing-the-world-for-a-robot-apocalypse/news-story/7b0cf76caba81c5cf66c92f168ad44fb

Preparing the world for a robot apocalypse

By Rhys Blakely

The Times

6:42AM September 30, 2022

Hollywood screenwriters have often imagined humanity being wiped out by an evil super-intelligent machine.

A survey suggests scientists regard such a scenario as entirely plausible, with a third of researchers in artificial intelligence believing it could cause a disaster akin to a nuclear apocalypse.

The research, by a team at New York University, enrolled 327 scientists who had recently published AI research. Thirty-six per cent of them agreed it was “plausible that decisions made by AI or machine-learning systems could cause a catastrophe this century that is at least as bad as an all-out nuclear war”.

Seventy-three per cent said AI could lead to societal changes on the scale of the Industrial Revolution, while 61 per cent said private companies had too much influence on the field.

Both tyrants and tycoons have acknowledged the role AI promises to play in geopolitics. Russian President Vladimir Putin said in 2017 that “whoever becomes the leader in this sphere will become the ruler of the world”.

-----

https://www.theage.com.au/business/companies/optus-breach-what-is-encryption-what-is-an-api-20220928-p5bln0.html

Experts have two theories on how Optus’ data was breached

By Carla Jaeger

September 28, 2022 — 4.13pm

Key points

  • The details of almost 10 million Australians were compromised in the Optus breach, including financial identification and personal information.
  • While there has been no concrete explanation to how the Optus data breach occurred, somehow the hacker managed to access the data without encryption. 
  • Experts warn that without scrupulous management of the methods used to encrypt and protect data, even encrypted information is at risk of breaches. 

As Optus weathers the fallout from the damaging data breach that exposed the personal details of 9.8 million customers, questions have been raised about how protected the data was to begin with.

So, how do companies protect the information of their customers?

Let’s start with the basics: Personally identifiable information, or PII, refers to information that can be used to distinguish or trace an individual’s identity, either alone or when combined with other personal or identifying information that is linked or linkable to a specific individual.

When any sensitive data is stored digitally, it has become common practice to encrypt that information.

-----

https://www.afr.com/technology/not-feasible-to-crack-properly-encrypted-data-20220927-p5blda

‘Not feasible’ to crack properly encrypted data

John Davidson Columnist

Sep 27, 2022 – 3.41pm

It was not feasible that the Optus customer information at the centre of one of the biggest data breaches in Australian history was encrypted, and that hackers cracked the encryption, a leading cryptography expert said.

Even the most standard modern encryption simply could not be broken, meaning the data cannot have been encrypted when it was accessed by the cybercriminals, said Vanessa Teague, an adjunct associate professor at the Australian National University who specialises in the use of cryptography to replace the types of identity databases that the Optus attackers accessed.

Or, if the data was encrypted, Optus must have accidentally revealed the normally secret “private key” that was protecting the data from being unlocked, she said.

On Tuesday afternoon, a person claiming to be the Optus intruder said he or she had now deleted all the data, having revealed the unencrypted personal details of 10,200 Optus and former Optus customers.

-----

https://www.theaustralian.com.au/nation/politics/scott-morrison-to-front-robodebt-inquiry/news-story/1e5b83ff0f98d1dab04c66ec1adedbf8

Scott Morrison to front Robodebt inquiry

Stephen Lunn

8:12PM September 27, 2022

Former prime minister Scott Morrison and his ex-ministerial colleagues Alan Tudge, Stuart Robert and Christian Porter are expected to be called to give evidence to the Robodebt Royal Commission as it seeks to understand why the discredited debt ­recovery scheme was allowed to continue for years after concerns were first raised.

In her opening address on Tuesday, commissioner Catherine Holmes said the flawed system of debt recovery used by the Department of Human Services from 2015 to 2019 against hundreds of thousands of benefit recipients was well understood after numerous inquiries, but little had been revealed about how the ­government responded “behind the scenes” to criticisms of its operation.

“Many people at different ­levels of government will be asked to give an account of their role in the devising, implementation and continuing of the Robodebt Scheme, but the focus, appropriately … will be on those in senior positions who had oversight of it,” Ms Holmes said.

Government Services Minister Bill Shorten says the Robodebt Royal Commission is being called because the… previous government “broke the law” for four and a half years. “This Royal Commission isn’t being called because someone doesn’t like someone,” he said. “This Royal Commission is being called because nearly 400,000.

-----

https://www.theaustralian.com.au/business/technology/optus-hacker-releases-10000-records/news-story/dc9dceb4081d872bb9e49139c5b4e93d

‘Too many eyes’: Optus hacker deletes data, apologises to customers

David Swan

Chloe Whelan

September 27, 2022

The hacker purportedly behind the massive Optus data breach has seemingly deleted the stolen data and apologised to Optus customers, declaring “we will not sale data to anyone [sic].”

The user ‘Optusdata’ has removed their original post, on a popular online data breach forum, which called for Optus to pay a $US1m cyber ransom within seven days.

“Too many eyes. We will not sale data to anyone. We cant [sic] if we even want to: personally deleted data from drive (Only copy),” the user wrote on Tuesday. “Sorry too [sic] 10,200 Australian whos data was leaked.

“Australia will see no gain in fraud, this can be monitored. Maybe for 10,200 Australian but rest of population no. Very sorry to you.

“Deepest apology to Optus for this. Hope all goes well from this

“Optus if your [sic] reading we would have reported exploit if you had method to contact. No security mail, no bug bountys [sic], no way too [sic] message.

-----

https://www.news.com.au/national/politics/targets-of-robodebt-royal-commission-revealed/news-story/e2075eca6bcee186093bbb6067648d05

Targets of Robodebt royal commission revealed

The top officials who were in charge when the unlawful Robodebt scheme was in place will be the focus of a new royal commission.

Anton Nilsson

September 27, 2022 - 10:53AM

The Robodebt royal commission will focus on the actions of senior decision makers, the senior counsel assisting said on Tuesday as the inquiry kicked off in Brisbane.

Prime Minister Anthony Albanese promised during the most recent election campaign that he would establish the royal commission if elected.

“The letters patent direct the commissioner to inquire into the specific factual matters which are set out with a focus on the decisions and actions taken or not taken by those in positions of seniority,” senior counsel assisting Justin Greggery said in his opening statement.

“The factual inquiry with its focus upon the role played by those in positions of seniority will be the basis upon which the commission makes recommendations it considers appropriate.

-----

https://www.smh.com.au/technology/how-to-protect-yourself-from-inevitable-optus-style-hacks-20220927-p5bl9k.html

How to protect yourself from inevitable Optus-style hacks

By Tim Biggs

September 27, 2022 — 11.37am

Data breaches like the one affecting Optus customers prove that there’s no guaranteed way to keep your data safe. You can be as vigilant as you like, but you still have to give over your details to prove who you are and one day that data may end up in the hands of crooks.

But whether you’ve been affected by the latest breach or not, there are still things you should know to keep yourself, your accounts and your credit as safe as you can.

Why do telcos keep this much data about their customers?

Australia law requires that telcos retain certain information for at least two years after collection, and this includes details used for identification purposes. That means that if you provide a piece of data for the purposes of proving your identity to a telco, it will be retained for two years or potentially longer. This does not include passwords, PINs or answers to secret questions, but it does include addresses, passport numbers and driver’s license details.

What happens if this data ends up in the hands of criminals?

While a single piece of identity data on its own may not be much use to criminals, having a matching set of various data can be exploited for identity theft, SIM jacking or breaking into online accounts. A criminal with access to your name, date of birth and several identifying documents for example could apply for credit in your name and spend up big while the bill goes to you.

-----

https://www.theaustralian.com.au/business/technology/what-optus-customers-should-do-now-to-protect-security-after-data-breach/news-story/54fa233cbbc3bb7c1c14f6718f01a9a3

What Optus customers should do now to protect security after data breach

David Swan

David Ross

8:35AM September 26, 2022

Optus customers are being urged to ‘be vigilant’ and keep a close eye on their online accounts, according to CEO Kelly Bayer Rosmarin, who has fronted the media a day after revealing a massive cyber attack affecting up to nine million customers nationally.

Ms Bayer Rosmarin said customers should have heightened awareness and look out for any suspicious or unexpected activity across online accounts and bank accounts. Most affected customers were yet to be contacted when the hack was first revealed, but have been in the days since.

“Unfortunately, because this is not the most vulnerable information like financial detail and passwords, we don’t have a simple message of ‘just change your password’,” Ms Bayer Rosmarin told reporters at an online press conference last week.

“Really what customers can do is just be vigilant. If they receive a notification that a password has been changed on one of their online services or their bank, and they did not initiate that, then assume that they need to report that and get on top of it straightaway.

-----

https://insightplus.mja.com.au/2022/37/genomic-testing-and-medico-legal-risk/

Genomic testing and medico-legal risk

Rocky Ruperto Sally Parsons

Issue 37 / 26 September 2022

INTEGRATING genomics into mainstream health care has many benefits, but also presents challenges. One challenge is ensuring that doctors and patients can safely and sustainably benefit from genomic medicine without increased medico-legal risk.

While the number of legal cases in Australia is still relatively small, this moment in time represents an opportunity to develop tools, training and support so doctors and their patients can safely and sustainably benefit from the advancing capabilities without increased medico-legal risk.

Over the past 2 years, we have been exploring the practical and medico-legal risks associated with genomic medicine, particularly in the context of antenatal care. Through our work, we identified that informed consent to test and workforce and funding issues are significant barriers to more effective use of genomics in health care. What we are seeing and how these medico-legal risks can be addressed through tools, training and support are explored below.

Informed consent to test

At the centre of consultations involving genomic medicine are individuals and families grappling with complex and often life-altering decisions. Many people need support both to understand the issues involved and to deal with the consequences of their decisions.

-----

David.

Monday, October 03, 2022

Weekly Australian Health IT Links – 03 October, 2022.

Here are a few I have come across the last week or so. Note: Each link is followed by a title and a few paragraphs. For the full article click on the link above title of the article. Note also that full access to some links may require site registration or subscription payment.

General Comment

-----

Sorry, I had to include this! I am really amazed at the International reach we see from the ADHA – true international citizens!

Otherwise too much Optus and not enough good news!

-----

https://www.financialexpress.com/healthcare/tamil-nadu-keen-on-australian-model-for-beefing-up-digital-healthcare-platform-looks-for-partnerships/2696794/

Tamil Nadu keen on Australian model for beefing up digital healthcare platform, looks for partnerships

While Tamil Nadu has a robust healthcare service, the government feels that the state’s healthcare is more of department-centric and cost -specific

Written by Sajan C Kumar

Updated: September 30, 2022 4:48:19 pm

The state's National Health Mission is on the mission to develop an outcome-based approach to bring more clarity on the money spent on healthcare.

To strengthen its digital healthcare platform, the Tamil Nadu government is looking at the Australian model of solutions by which the land Down Under has managed to cover 90% of its population under a digital record system. The state plans to forge partnerships with Australia’s Digital Health Agency on various aspects pertaining to the digitisation of the healthcare records.

While Tamil Nadu has a robust healthcare service, the government feels that the state’s healthcare is more of department-centric and cost -specific. According to the government, there is a need to shift to beneficiary-centric approach for which data is important. Given the realisation that due to lack of data there is a limitation to analyse the efficiency and utilisation of the services and hence plans to digitise the entire healthcare platform of the state.

The state government representatives have recently met a high-level Australian Digital Health delegates who are currently in India as a part of the Australia – India Business Exchange 2022 Business Mission to discuss about the possible partnership.

The delegation, organised by the Australian Trade and Investment Commission, of the Australian government, met with the Tamil Nadu government and local healthcare industry representatives.

-----

https://good-design.org/projects/innovating-better-digital-health-experiences-for-all-australians/

Innovating Better Digital Health Experiences for all Australians

·         2022

·         Design Strategy

Designed By:

  • The Customer Experience Company

Commissioned By: The Australian Digital Health Agency

Designed In: Australia

The Australian Digital Health Agency (ADHA) faced a wicked problem: delivering high-value digital experiences that meet the needs of Australian health practitioners and the Australian public. Together, designing a CX Toolkit to be used by the Agency in the strategic design of sustainable, future-focused digital health experiences for all Australians.

-----

https://www.smh.com.au/national/australia-news-live-majority-back-voice-to-parliament-interest-rate-rises-add-120b-to-budget-bill-20220926-p5bkxt.html?post=p546ns#p546ns

Optus says it’s contacted all customers with compromised ID documents

By Broede Carmody 26 Sep, 2022

Returning to the big business story of the day, and Optus says it has now contacted all customers whose ID document numbers were compromised due to the recent cyberattack.

Here’s what the company told us in a statement:

We continue to reach out to customers who have had other details, such as their email address, illegally  accessed. We understand and apologise for the concern that this has caused for our customers. Payment detail and account passwords have not been compromised as a result of this attack.

The statement comes after Prime Minister Anthony Albanese labelled the data breach a “huge wake-up call”.

-----

https://www.itnews.com.au/news/data-breach-puts-heat-on-new-optus-infosec-team-585683

Data breach puts heat on new Optus infosec team

By Richard Chirgwin on Sep 26, 2022 12:33PM

Optus’ massive data breach is providing a live test of a structure the carrier put in place last year in preparation for critical infrastructure laws.

An Optus spokesperson told iTnews its response to the breach is being handled by head of national and cyber security Ben Davies and CIO Mark Potter (to whom Davies reports).

Optus foreshadowed the creation of Davies’ role in April 2021, when Optus creates senior leadership role spanning national and cyber security ops.

iTnews learned the position was part of its response to the rollout of critical infrastructure security laws.

----

https://www.theaustralian.com.au/business/technology/airtree-partner-james-cameron-urges-more-aggressive-approach-to-new-data-laws-after-optus-breach/news-story/f895cc4d666af0af0cc261582e15efb5

AirTree partner James Cameron urges more aggressive approach to new data laws after Optus breach

David Swan

4:27PM September 28, 2022

The federal government should be mandating the use of encryption in large companies, and should follow the likes of the EU with new, strong privacy regulations to prevent another Optus-style data breach, experts say, as the blame game over the catastrophic breach reaches fever pitch.

James Cameron, partner at venture capital firm AirTree, said there had rightly been a lot of talk from the government around beefing up cybersecurity regulations following the breach, but a more expansive and aggressive approach was now needed given its severity.

Cybersecurity Minister Clare O’Neil is expected to propose new legislation forcing big companies to inform their customers of data breaches earlier, and may also introduce new fines and penalties that would affect the likes of Optus, but Mr Cameron said the government should go further.

“So far the attention has been on mandatory breach notifications. This is important … but it’s even more vital to look at implementing minimum encryption standards for large companies that store sensitive customer data,” Mr Cameron said.

-----

https://www.afr.com/companies/telecommunications/afp-launches-operation-guardian-as-it-watches-dark-web-for-optus-leads-20220930-p5bm8d

AFP launches Operation Guardian as it watches dark web for Optus leads

Lucas Baird Reporter

Sep 30, 2022 – 12.28pm

The Australian Federal Police has set up Operation Guardian to help protect people most at risk of identity fraud as it continues investigations into the Optus data breach that has compromised up to 9.8 million people.

Assistant Commissioner Justine Gough said the AFP would announce “further measures” to protect the initial 10,000 current and former Optus customers who had their details, including Medicare numbers, leaked online late on Friday.

It is not certain yet how many ID documents were stolen.

“We are still going through a large dataset. That is part of our ongoing inquiries, and our ongoing co-operation that Optus is providing to the AFP,” Commissioner Gough said.

“Customers affected by the breach will receive multi-jurisdictional and multilayered protection from identity crime and financial fraud.”

-----

https://medicalrepublic.com.au/what-does-the-optus-medicare-data-breach-mean/78149

30 September 2022

What does the Optus Medicare data breach mean?

By The Conversation

This isn't the first time it's happened, so companies are supposed to be more careful.


Medicare card numbers are the latest personal details to be exposed as part of the Optus data breach.

Optus has confirmed this affects 14,900 valid Medicare numbers that have not expired, and a further 22,000 expired card numbers.

But this isn’t the first time Australians’ Medicare numbers have been exposed. And some privacy and cybersecurity experts have long been concerned about the security of our health data.

Here’s what you can do if you’re concerned about the latest Medicare breach, and what needs to happen next.

What’s the big deal?

Your Medicare number gives you access to subsidised services across Australia’s health system. Most Australians have a number, whether or not they use these services.

-----

https://www.hinz.org.nz/news/617941/Intensive-effort-to-fix-Central-Region-RIS-issues.htm

'Intensive effort' to fix Central Region RIS issues

Wednesday, 28 September 2022  

NEWS - eHealthNews.nz editor Rebecca McBeth

Te Whatu Ora has halted the roll-out of the Central Region Radiology Information System to Hutt Valley and Wairarapa Hospitals while 'intensive effort' is undertaken to fix issues uncovered by the implementation at Capital and Coast.

Te Whatu Ora Capital and Coast went live with the regional Radiology Information System (RIS) and PACS reporting solution on the Philips Vue imaging platform in May 2022.

The move is part of an agreement between the six Central Region districts – CCDHB, Hutt Valley, Wairarapa, MidCentral, Whanganui and Hawke’s Bay – to implement shared regional ICT systems to support radiology functions and improve access to patient data across the region.

Whanganui, MidCentral, and Hawke’s Bay districts are already using the regional RIS and implementation was being planned for Hutt Valley and Wairarapa.

A statement from Te Whatu Ora says that "while implementation for Capital and Coast rolled out as planned, with no disruption experienced during the transition, we acknowledge there have been several problems with the regional RIS".
------

https://www.healthcareitnews.com/news/anz/mercy-health-adopts-3ms-cdi-workflow-tool-enhance-chart-review

Mercy Health adopts 3M's CDI workflow tool to enhance chart review

It supports the collaboration among CDI specialists in reviewing patient charts and keeping a record of actions.

By Adam Ang

September 26, 2022 04:24 AM

Victoria-based Mercy Health has implemented a cloud-based clinical documentation integrity workflow tool by 3M Health Information Systems to enhance its documentation review and query workflow processes.

According to the health IT provider, this is the first time the 3M M*Modal CDI Collaborate has been implemented in Australia.

WHY IT MATTERS

Mercy Health, which runs two hospitals in Melbourne, is a long-term user of 3M Codefinder and 3M Core Grouping Software. Recently, it established a CDI programme with the intent to capture an accurate representation of patient episodes within their medical records. Through this programme, a CDI specialist role has been made, along with the associated objective measures related to its activity.

The organisation tapped 3M for a solution that will enable it to assess its CDI programme's sustainability and long-term results. It wanted the solution to help its CDI team become more efficient with their time and assist in prioritising their workload to focus on high-impact areas.

-----

Upcoming ANDHealth Report – The Awakening Giant: The Rise of Australia's Evidence-Based Digital Health Sector

We are proud to announce the upcoming release of our new report – The Awakening Giant: The Rise of Australia’s Evidence-Based Digital Health Sector. Following on from our 2020 report, Sleeping Giant, The Awakening Giant tells the story of a fast-growing, emerging and innovation-driven sector with detailed insights from the industry.

Digital Health: The Sleeping Giant of Australia’s Health Technology Industry, published in July 2020, showcased the potential of the digital health sector to drive our economy and healthcare system into the future. Since then, Australia’s digital health industry has evolved, expanded and matured, which we have seen first-hand as the number of companies supported by ANDHealth has grown from 300 to more than 600. The Awakening Giant uses insights and data from our growing pipeline to demonstrate the rise of Australia's evidence-based digital health sector. 

The Awakening Giant: The Rise of Australia’s Evidence-Based Digital Health Sector will be released on Wednesday 19 October 2022.

Read our Sleeping Giant 2020 Report

-----

https://www.ausdoc.com.au/news/can-ai-reduce-the-harms-and-cost-of-australias-breast-cancer-screening-program/

Can AI reduce the harms and cost of Australia’s breast cancer screening program?

Genetic epidemiologist Professor John Hopper says a more targeted and cost-effective approach is not far off

Siobhan Calafiore

30 September 2022

There is a debate raging within the medical community which has yet to reach the wider public about the costs and benefits of Australia’s national breast screening program.

Three years ago, researchers from the ­Cancer Council NSW estimated it was costing up to $65,000 for each life-year it was saving, trigger­ing calls for more to be done to risk-stratify women and reduce overdiagnosis.

Here, genetic epidemiologist Professor John Hopper from the University of Melbourne speaks to AusDoc about the role of AI and whether it can reduce both the harms and cost.


Australian Doctor: You hosted the Why Study Mammographic Density conference earlier this week. What is the state of play with breast cancer screening?  

Professor John Hopper: In the past decade or so, mammography has become digital, and that’s helped revolutionise this whole space.  

That has allowed us to work with artificial intelligence (AI) to differentiate affected breasts from unaffected breasts so we can find out what it is inherently about that woman, as well as to detect breast cancers and predict those at high risk.   

At one of the conference sessions this week, I presented our analyses on an enormous dataset here in Victoria, which showed that you could get good prediction of detection and also good prediction of short-term cancers using AI. 

-----

https://www.seek.com.au/job/58675112?type=standout

CRM Manager

Australian Digital Health Agency

Brisbane QLD

Direct Marketing & CRM (Marketing & Communications)

$120,000 - $139,999

Full time

30 Sep, 2022

The Australian Digital Health Agency (the Agency) is responsible for national digital health services and systems, with a focus on engagement, innovation and clinical quality and safety. Our focus is on putting data and technology safely to work for patients, consumers and the healthcare professionals who look after them. 

 About the Role 

Reporting directly to the Director, Incident & Problem Management, the CRM Manager is responsible for the Agency’s Microsoft Dynamics CRM instances. This management includes strategic planning, business analysis, design, and development/configuration oversight. To manage such a broadly-used system successfully, the successful applicant will have hands-on Dynamics 365 experience, change management experience, strong interpersonal skills and experience in developing documentation and delivering training.

To be successful in the role you will have:

  • Hands-on experience in the administration of Microsoft Dynamics CRM or (more broadly) Microsoft Power Platform.
  • Business analysis experience in understanding a complex business environment and translating the needs of many departments into functional requirements.
  • Experience in managing a system adoption and change program in a mid-large size organisation.
  • Experience managing technical and non-technical staff.
  • Experience managing complex internal/external stakeholder environments across multiple projects, including the ability to develop a consolidated and corporate view of stakeholders involved in many different health initiatives and projects.
  • Experience with the principles of organisational change management and collaboration and their application in strategy, policy or technology change environments.
  • Ability to understand a wide set of external stakeholders, and from this provide advice and insight into planning communication activities via CRM.
  • Experience with a communications mailout tool will be useful however is not required.
  • Demonstrated interpersonal skills in building and sustaining relationships with a particular focus on system adoption.
  • Ability to design andfacilitate complex multi-stakeholder training and other workshops.

You can view the position description here.  

https://www.seek.com.au/job/58612325?type=standout

Release Coordinator

Australian Digital Health Agency Canberra ACT

Management (Information & Communication Technology)

$101,757 - $114,800 TRP incl superannuation Full time

27 September, 2022

About the Agency

The Australian Digital Health Agency (the Agency) is responsible for national digital health services and systems, with a focus on engagement, innovation and clinical quality and safety. Our focus is on putting data and technology safely to work for patients, consumers and the healthcare professionals who look after them.

About the Role

Reporting to the Assistant Director, Change and Release Management (CARM) section, within the Technology Operations Division, this position is responsible for providing release co-ordination and management and broader operational support. From time to time, there may be a requirement to assist other areas of the Operational Branch as a whole.

Key requirements of this role include: 

  • Strong understanding of Software Development Life Cycle (SDLC) principles and practices. 
  • Strong understating of the Program/Project Management.
  • Fundamental understanding of the ITIL process. 
  • Strong written and oral communication skills, including experience building release schedules, drafting documentation, process development.
  • Coordinate and monitor release activities to ensure timely and accurate outcomes which meet key performance measures. 
  • Develop, publish, communicate, and enforce release management policies and standards across all teams. 
  • Maintain integrity in release execution by monitoring each phase of the release. 
  • Validate the release as it progresses through various release gates including planning, design, build, and test phases, alerting appropriate stakeholders of any risks or issues that need to be addressed. 
  • Maintain release area on Collaborate and shared location, file deliverables, risks, issues, milestones, and decisions for future reference. 
  • Identify, analyse and escalate issues and risks which may impact the team’s ability to deliver releases within expected timeframes. 
  • Validate pre deployment deliverables and activities. 
  • Provide release coordination and communication during and after deployment. 
  • Develop and document solutions to problems impacting the release program and escalate as appropriate. 
  • Identify opportunities to improve the release processes and policies, including documentation and dissemination to key stakeholders. 
  • Review and update existing processes and policies and create new ones as needed 

-----

https://www.itnews.com.au/news/nbn-co-has-a-new-acting-cio-and-new-tech-transformation-585756

NBN Co has a new acting CIO and new tech transformation

By Ry Crozier on Sep 28, 2022 6:40AM

Executive change quietly occurred in July.

NBN Co is under new IT leadership and has a second technology transformation program underway that builds on an earlier $200 million overhaul.

The company’s delayed annual report [pdf], released Tuesday, details a previously-unpublished “critical transformation program” called ‘Enterprise Simplicity 2025’.

‘Enterprise Simplicity 2025’ is said to “build on” the company’s systems digital roadmap, a $200 million program revealed in late 2020 that, at the time, was the “largest IT transformation” that NBN Co had ever undertaken.

Where the roadmap “was designed to streamline legacy IT systems and processes”, the 2025 initiative is intended to simplify every aspect of NBN Co’s operations.

-----

https://www.theaustralian.com.au/world/nasa-to-crash-space-craft-into-asteroid/news-story/27714181117cfc2fb934b6c41f0cefff

Double Asteroid Redirection Test (DART): NASA crashes spacecraft into asteroid

Adam Creighton

September 27, 2022

NASA scientists are celebrating after successfully crashing a spaceship into an asteroid millions of kilometres away, in a historic test of humanity’s ability to prevent a cosmic object one day devastating life on Earth.

The 590kg spaceship, around the size of refrigerator, struck the moonlet asteroid Dimorphos travelling at around 24,000 km/h at 9.15am on Tuesday morning about 11 million kilometres away from Earth.

“We’re all just losing our minds right now,” said Harrison Agrusa, a University of Maryland astrophysicist and investigation team member on the DART mission, which stands for Double Asteroid Redirection Test.

“I just can’t believe it went, as far as I know, exactly according to plan,” he added from the Johns Hopkins University Applied Physics Laboratory in Maryland.

Scientists said it would take around two months until they had worked out how much the asteroid, around the size of one of the pyramids of Egypt, had shifted course as a result of the collision, the first attempt by scientists to redirect the path of an asteroid.

-----

Enjoy!

David.