Microsoft's big Windows Defender ATP update: bad macros, fileless malware and faster response
Windows Defender ATP aims to boost the speed and efficiency of enterprise security teams.
IT Audit — News
After a tough year in data compliance, 2019 promises more clarity for businesses
New guidelines for data sharing have provided clarity for businesses around their privacy and data breach obligations, but 2019 will see even greater improvements as emergent California privacy guidelines trigger privacy protections across the globe.
David Braue | 28 Nov | Read more
Smarter Security – Is It Time for a New Approach to API Protection
Digital disruption has resulted in the creation of a myriad of new business models and partnership ecosystems, in an era where collaboration and integration are no longer just nice-to-haves; they’re the currency of competitive advantage.
Mark Perry | 10 Aug | Read more
Olympic Destroyer destructive malware targets EU bio-weapons research groups
Kaspersky reveals Olympic Destroyer attack aimed at Europe a week after EU votes to ban its products at EU institutions.
AusCERT 2018 - Hunting fraud in telecom networks
We don't often think about how our mobile phone calls are rated between countries. But understanding how that happens is something carriers and telecommunications services think about constantly. And it turns out criminals also think about this.
Anthony Caruana | 06 Jun | Read more
AusCERT 2018 - The DarkNet, Crime and Cryptocurrencies
One of the most anticipated sessions at the annual AusCERT conference is the presentation given by members of the law enforcement community.
Anthony Caruana | 06 Jun | Read more
Customers recommend, spend more with companies that protect their data – so why are so few businesses GDPR ready?
Increasingly data-hungry businesses risk commercial consequences as sceptical consumers threaten retaliatory action against companies that can’t protect sensitive personally identifiable information (PII), new research has found even as surveys suggest just 29 percent of companies will comply with globally-significant GDPR privacy legislation when it comes into effect next week.
David Braue | 17 May | Read more
Privacy-privy consumers don’t mind some data sharing – with companies they trust
Older Australians understand the role of sharing personal data in today’s Internet economy better than millennials and are less comfortable with exchanging personal data with companies as a result, according to new research designed to gauge changing attitudes towards data privacy.
David Braue | 15 May | Read more
Despite tougher obligations, “mismanaged” corporate security has left billions of identity records exposed
More than 3 billion identity records were found spread across visible and underground online sources during 2017, according to new research that lends further weight to suspicions that protection of personally identifiable information (PII) is proving tremendously ineffective in the face of thriving demand from online cybercriminals.
David Braue | 11 May | Read more
Security industry welcomes Budget’s AI support, but BEC-riddled Aussie businesses are more ambivalent
Significant AI investment encourages security vendors, but many Australian companies still doubt the technology’s value despite its value in stamping down non-malware cybercrime
David Braue | 10 May | Read more
0-day IE attacks part of decade long hacks on Chinese government, say Chinese researchers
Chinese researchers suggest South Korean hackers found a hole in Microsoft's Visual Basic script engine to attack the Chinese government trade groups.
Budget 2018: Cybersecurity funding dovetails with national-security priorities
Although designed with an eye on the forthcoming election, when it comes to cybersecurity this year’s Budget has foregone the dramatic policy and investment allocations of recent years to focus on incremental programs that position cybersecurity within the broader national security narrative.
David Braue | 09 May | Read more
The week in security: Really, change your passwords. Pretty please?
Did you change your passwords in recognition of World Password Day? Probably not.
David Braue | 07 May | Read more
Amidst Commonwealth Bank’s damage control, a reminder about human insecurity
Even as authorities come to terms with the Commonwealth Bank of Australia’s failure to mention Australia’s biggest-ever data breach for a year, that company’s loss of nearly 20 million customers’ account data is a reminder to every company about the persistent security risks of human error.
David Braue | 07 May | Read more
When it comes to password hygiene, Australians are almost the least awful of a bad bunch
Australians are more fastidious than those in other countries about separating work and personal passwords – and more careful than many in protecting sensitive data like healthcare accounts – but use of secure passwords remains uncommon, according to new figures, and high rates of password reuse suggest that we still aren’t learning to protect sensitive information right.
David Braue | 04 May | Read more
As automated scan unearths pen-testing gold, careless businesses must polish their DevSecOps
Concerns over the security of companies’ development cultures were validated for an Australian cybersecurity specialist after a recent global scan of GitHub projects identified more than 200,000 servers where developers had left hardcoded passwords and other sensitive information in publicly available source code.
David Braue | 27 Apr | Read more
Gmail for business gets a new look and expiring email
New confidential mode lets users set an expiry date on messages and require an SMS passcode.
Australia joins NATO cyber defence group, opens “pop-up” embassy in Estonia
Australia joins the NATO-nation backed cyber defense group.
“Shocking” data-breach volumes only hint at the true magnitude of Australia’s data insecurity
Revelations about the rate at which Australian companies are being compromised were “shocking”, a security specialist has warned in the wake of new breach analysis figures suggesting that most global incidents involve identity theft and are perpetrated by malicious outsiders.
David Braue | 23 Apr | Read more
FDA issues 'recall' on heart implants for security firmware update
Firmware updates get complicated when hearts depend on a quick and successful installation.