Agencies seeking exemptions must submit detailed justifications to the Commonwealth Security Policy Branch by March 15, 2025, and undergo quarterly audits to ensure compliance. The prohibition, according to supporters, reduces existential threats to public-sector infrastructure, while critics claim it may damage diplomatic ties and restrict access to affordable security measures. Despite these assurances, Western governments continue to express skepticism, particularly regarding Russia’s Federal Law, which mandates data localization and access for security agencies. Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis. Home Affairs Secretary Stephanie Foster emphasized the decision stemmed from concerns over Kaspersky’s “extensive collection of user data” and potential exposure to “extrajudicial directions from a foreign government that conflict with Australian law”. Kaaviya is a Security Editor and fellow reporter with Cyber Security News. Limited exemptions are permitted for entities engaged in national security, law enforcement, or regulatory functions, provided they implement stringent risk mitigations. Meanwhile, the directive’s emphasis on asset stocktakes and unmanaged device governance aligns with PSPF Direction 002-2024, which mandates rigorous IT inventory controls for internet-facing systems. She is covering various cyber security incidents happening in the Cyber Space. This advisory extends to private-sector contractors handling government data, reflecting heightened scrutiny of third-party vendor risks. Canada and the U.K. have also restricted Kaspersky’s use in critical infrastructure, positioning Australia as the third Five Eyes nation to enact such prohibitions.
This Cyber News was published on cybersecuritynews.com. Publication date: Mon, 24 Feb 2025 16:45:16 +0000