A hacker exfiltrated non-classified information about Australia's Joint Strike Fighter programme and other military hardware last year after breaching the network of a defence contractor, the country’s Minister for Defence Industry said on 12 October.
As first reported on 11 October by freelance journalist, Stilgherrian, for media outlet, ZDNet, about 30 gigabytes of data was taken in the cyber attack, including details of the Joint Strike Fighter warplane and P-8 Poseidon surveillance plane, according to a presentation on the hack by a government official.
"Fortunately the data that has been taken is commercial data, not military data ... it's not classified information," Minister for Defence Industry, Christopher Pyne, told ABC Radio.
"I don't know who did it."
In a presentation to a conference in Sydney, an official from the Australian Signals Directorate (ASD) intelligence agency said technical information on smart bombs, the Joint Strike Fighter, the Poseidon maritime patrol aircraft and several naval vessels was stolen.
"The compromise was extensive and extreme," said the official, Mitchell Clarke, in an audio recording made by Stilgherrian and broadcast by the ABC.
Clarke said the attacker accessed the small contractor's systems for five months in 2016, and the "methodical, slow and deliberate," choice of target suggested a nation-state actor could be behind the raid.
Australia has agreed to buy 72 Lockheed Martin Joint Strike Fighter planes.
A spokesman for the Australian Cyber Security Centre (ACSC), a government agency, said the government would not release further details about the cyber attack.
The ACSC said in a report on Monday that it responded to 734 cyber attacks on "systems of national interest" for the year ended June 30, and the defence industry was a major target.
The attack on the defence contractor was carried out by a "malicious cyber adversary", it said.
In 2016 the agency said it responded to 1,095 cyber attacks over an 18-month period, including an intrusion from a foreign intelligence service on the weather bureau.
(Reporting by Tom Westbrook; Editing by Stephen Coates)
- What will the Govt’s critical infrastructure laws mean for IT partners?
- Equifax denies it was hacked again
- Review urges tighter controls for Medicare data access
- Former Fortinet channel sales director takes security role at Telstra
- Dept of Defence goes to market for major IT support services deal
- Govt launches review of Aussie domain management