HP ships 28 laptop models with an ‘accidental’ keylogger
HP will soon issue an update to remove a keylogger present on dozens of HP laptop models.
Retail — News
Shodan search engine launches botnet hunting service
Security researchers and law enforcement can now use Shodan to search for malware servers that are used to control infected computers.
The week in security: Cybercriminal gets record prison term; new IoT botnet grows
The 27-year sentence handed down to a 32-year-old Russian hacker set the high water mark for cybercriminal prosecution. Security firm Webroot was also in trouble after its endpoint security product inadvertently began tagging Windows system files as malware – rendering their systems unusable. This, as experts offered |tips for protecting older Windows Server machines.
David Braue | 02 May | Read more
USAF to Aussies, Brits, Kiwis, and Canadians: come hack us too... if you can
US Air Force looks to hackers from all Five-Eyes nations to help plug up previously unseen security flaws.
Atlassian’s HipChat forces password reset after breach
Hackers access HipChat Cloud chats and account information.
The week in security: 457 changes hit security skills; 9 in 10 Aussie companies breached
Australian government moves to curb abuse of 457 visas had a concerning side effect as IT-security positions were relegated to a short-term visa category that offers no potential pathway to permanent residency – potentially making Australia a less attractive destination for overseas security talent.
David Braue | 24 Apr | Read more
Your users may soon be taking selfies instead of typing passwords
Biometrics is shaping up to be the new authentication as a host of identity and image-scanning innovations set the stage for the use of body scans as a complement to – or even a replacement for – conventional passwords.
David Braue | 21 Apr | Read more
Google blocks Unicode phishing URLs that could spoof Apple.com in Chrome
Update to the latest version of Chrome to protect yourself from the Punycode phishing attack that’s near impossible to see you’re not visiting Apple’s website.
Mobile VPN just the beginning as Wangle’s scalable network stack eyes the enterprise
Designing secure and consumer-friendly virtual private networks (VPNs) will convince consumers to adopt the technology as a basic part of their privacy habits, a Perth-based startup has predicted as it takes the wraps off a security and compression network stack whose first instantiation will soon be complemented by a host of complementary consumer and enterprise products.
David Braue | 20 Apr | Read more
Pressure is on Australian CSOs as cybersecurity breaches are found to be near-ubiquitous
The risk of cybersecurity compromise has become ubiquitous across business and government sectors, with new figures suggesting that nine out of every 10 Australian organisations dealt with an attempted or successful cybersecurity breach during fiscal 2015-16 – and that 58 percent had been successfully compromised.
David Braue | 20 Apr | Read more
457 visa changes will limit Australian companies’ access to overseas security talent
Availability of crucial overseas cybersecurity staff will be restricted by the government’s changes to its visa program for skilled workers, which will limit visas for security specialists to two years maximum and prevent employers from transitioning overseas hires into permanent employees.
David Braue | 20 Apr | Read more
Google yanks phishing app targeting Australian and EU bank apps
Researcher finds two apps on Google Play that overlay fake sign-in pages for Australian bank apps when users attempt to launch the real banking app.
Security industry “has failed the customer”, exec concedes as reborn McAfee spruiks consulting, integration growth
The relaunching of the McAfee brand as a standalone company – after 7 years in which the company formerly known as Intel Security functioned as a division of Intel – will give the security giant more latitude to capitalise on runaway demand across the Asia-Pacific region, according to the company’s regional head.
David Braue | 04 Apr | Read more
The week in security: Do businesses trust the cloud too much?
If there was one lesson from the CSO Perspectives roadshow – which wraps up in Wellington this week – it came around the growing scourge of ransomware. If you’re like the attendees, you’ve probably already been hit at least once. However, a positive outcome of such breaches is that they make it easier to talk security with the CEO – whether about ransomware or the rest of the |9 most serious information-security threats you’ll face through 2019.
David Braue | 03 Apr | Read more
Digital mortgage processing: taking the elephant one bite at a time
The financial sector’s holy grail of end-to-end digitisation of complex mortgage transactions is in sight, according to Tommy Petrogiannis founder and president of digital signature specialist eSignLive. They may just need to tackle it one bit at a time.
Andrew Colley | 31 Mar | Read more
Ransomware-ignorant consumers barely protect their digital lives – so how will they protect their employers’ data?
Businesses may be counting on their employees to avoid clicking on ransomware-laden emails, but surging infection rates show that most employees still aren’t getting the message – and a new consumer survey may explain why.
David Braue | 31 Mar | Read more
Despite limited visibility, businesses trust cloud services over email and mobiles
Security practitioners now trust public cloud storage services with sensitive business data more than they trust email, social media, mobile devices and laptops, according to a survey of security practitioners that also suggested big-data analytics aren’t improving security as much as many would like to believe.
David Braue | 31 Mar | Read more
Attack, detection metrics improve but security specialists warn against complacency
The average business suffered 12 percent fewer attacks in 2016 than 2015 and cut average time to detect attacks by a third – but security specialists caution against complacency amidst suggestions that the declines may be due more to increasing targeting by attackers than any overall improvement in cybersecurity defences.
David Braue | 30 Mar | Read more
Ignorant of cybersecurity risk, breached small businesses are concealing the cost of recovery
Many Australian businesses are quietly absorbing the cost of cybersecurity attacks to keep them off of the radar, according to new reports that suggest even small and medium businesses are paying an average $276,323 to recover from a successful attack.
David Braue | 30 Mar | Read more
IBM: 4 billion online records were leaked in 2016
IBM says that more than four billion records were leaked online in 2016, including a mix of credit card data, passwords and personal health information. The number of different bits about people’s private lives leaked online last year were up from 600 million exposed records in 2015, and one billion exposed records in 2014.