Sweden leaks its military secrets, national driver database in IBM outsourcing deal
Swedish government in crisis mode after massive leak of military secrets and the nation's driver registry.
Industries — News
Will humans ever learn to be secure?
Despite all the investment in cybersecurity technologies, all the hiring of technical experts, all the millions spent on expensive security consultants, today’s businesses have made little progress resolving what remains the biggest paradox of information security.
David Braue | 21 Jul | Read more
Hackers again stole guests' credit card data from Trump Hotels
Trump Hotels admitted that hackers stole credit card and other sensitive data about guests who stayed at 14 Trump properties; the third-party reservation booking system was breached.
Long favoured by Australian PM, Wickr could become his decryption Waterloo
Once lauded by prime minister Malcolm Turnbull as a paragon of secure communications, encrypted-messaging app Wickr could turn out to be one of the biggest opponents to his government’s new legislative push to force technology companies to divulge users’ encrypted communications.
David Braue | 19 Jul | Read more
IoT messaging protocol is big security risk
Popular IoT messaging protocol lacks encryption and sufficient device authentication security.
Google locks down OAuth after ‘fake Docs’ Gmail phishing attack
Google makes developers use of OAuth a little more like access to the Play Store.
CSO Webinar: Removing the hype and complexity around today's security threats
CSO Webinar: Removing the hype and complexity around today's security threats
Getting smarter about making cities smart
Many cities claim to be ahead of smart curve, but find themselves handcuffed by custom systems
Microsoft's patches HoloLens AR headset from remote hack
Microsoft's Patch Tuesday has its first security update for the HoloLens headset.
Insider wreaks havoc on company—after he resigns
A disgruntled former employee, used off-the-shelf tools to destroy files and cause mayhem for Navarro Security
Christopher Burgess | 11 Jul | Read more
The week in security: AI could narrow security's skills gap – but how much AI is too much?
The role of artificial intelligence in improving security defences has expanded dramatically in recent years – but it may have expanded a bit too far, with a UK court blasting the provision of patient healthcare data to Google’s DeepMind for analysis.
David Braue | 10 Jul | Read more
Cybersecurity has a huge skills gap! Will you be part of the problem or the solution?
ISC(2) Estimates a global cyber security workforce shortage of 1.5 million jobs over the next five years.
U.S. defense contractor arrested for giving U.S. secrets to Chinese operatives
Kevin Mallory maintained a clandestine relationship with People's Republic of China intelligence operatives from 2014-2017
Christopher Burgess | 07 Jul | Read more
Medicare breach heightens mistrust of government’s IT security efforts
Repercussions from the compromise of Medicare details continue to escalate, but in the longer term the incident serves as yet another reminder that the disconnect between security strategy and execution isn’t limited to Australia’s private sector.
David Braue | 06 Jul | Read more
AI-driven virtual security analysts could help close security’s skills gap
The application of artificial intelligence (AI) techniques to analysing masses of security data may have become commonplace, but security incident-management specialist Demisto reports “great traction” amongst customers for an alternative platform that uses AI to learn from – and duplicate the actions of – human security specialists.
David Braue | 06 Jul | Read more
UK rules patient data shared with Google's DeepMind was illegal: AI is not a doctor
UK data protection watchdog draws a line between AI assistance and human doctors.
The week in security: Petya derivative makes CSOs WannaCry all over again
It was WannaCry all over again as a new ransomware strain, based on Petya malware, swept across the world.
David Braue | 03 Jul | Read more
Petya-inspired ransomware is déjà vu for still-vulnerable businesses
It’s déjà vu all over again as the aggressive Petrwrap global ransomware outbreak causes new headaches in Australia and abroad – and the global security community again excoriates businesses for poor patching and remediation strategies that make them sitting ducks for ransomware perpetrators.
David Braue | 28 Jun | Read more
Even after a breach, most merchants don’t change their fraud prevention strategies
Two out of three merchants fail to make any changes to their fraud prevention strategies even after they suffer a data breach, according to a merchant survey that also found those merchants are more concerned with reputational damage from a breach than the actual loss of data.
David Braue | 28 Jun | Read more
As tech bridges cloud gaps, security is best managed outside the IT shop
Growing business engagement with issues around cybersecurity risk means the CISO function should ideally be moved out of the IT organisation, a senior security policy advisor has argued as organisations increasingly adopt business-level controls on growing software-as-a-service (SaaS) adoption.
David Braue | 23 Jun | Read more