Industry News

Cyber attack forces live TV shows off-air on Australia’s Channel 9

  • Australia’s Channel 9 network disrupted by cybercriminals
  • Staff told to work from home as station attempts to recover from attack

Live broadcasts from Australia’s Channel 9 TV network were disrupted this weekend following what is believed to have been a cyber attack.

As Channel Nine’s “Weekend Today” programme was scheduled to go live on air, the show’s presenters were forced to turn to Twitter to explain their absence.

Pre-recorded programmes were played on the channel as the “technical issues” were investigated by the station’s IT team.

Channel 9 executives later confirmed to The Age that the network had suffered a cyber attack, and that staff had been ordered to work from home indefinitely while attempts were made to restore systems back to normal operation.

There has been speculation that the attack may have been state-sponsored, with some commentators noting that Channel 9 has been working on an investigation into ties between Russian President Valdimir Putin and poison-based assassinations, or that newspapers under the Nine Entertainment’s umbrella have been critical of China.

Meanwhile, the Australian Parliament in Canberra was said to also be investigating a potential cyber attack against government-issued smartphones and tablets on Sunday evening.

Whether the near-simultaneous attacks against the TV station and parliamentary services are coincidence or not is currently unclear.

One thing that is unquestionable is that cyber attacks against TV stations are not a new phenomenon.

Back in August 2005, for instance, the CNN newsroom was hit by the Zotob worm, with the station reporting the incident live on air.

Ten years later, TV5Monde in France was taken off air after pro-ISIS hackers attacked its systems.

Of course, malware attacks have evolved somewhat since then – and it’s now much more common to see security breaches which involve hackers encrypting the data of its victims, and exfiltrating sensitive data, before attempting to extort a ransom payment.

As yet Channel 9 hasn’t made clear the nature of the attack, and whether it too is just the latest in the long line of ransomware victims or if its assailants had a different motive.

About the author


Graham Cluley is an award-winning security blogger, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by companies such as Sophos, McAfee and Dr Solomon's. He has given talks about computer security for some of the world's largest companies, worked with law enforcement agencies on investigations into hacking groups, and regularly appears on TV and radio explaining computer security threats.

Graham Cluley was inducted into the InfoSecurity Europe Hall of Fame in 2011, and was given an honorary mention in the "10 Greatest Britons in IT History" for his contribution as a leading authority in internet security.