Although Microsoft ended development of its widely used Forefront Threat Management Gateway (TMG) 2010 tools in April, many organisations are still grappling with the migration of a core security service that had become so irretrievably interwoven with network security that it has proved extremely difficult to remove.
David Braue | 24 Jun | Read more
Samsung is facing tough questions from Australian mobile carriers following the publication of a software security flaw with the potential to comprise hundreds of millions of its smartphones.
Andrew Colley | 18 Jun | Read more
Google has kicked off its bug bounty for Android, offering security researchers as much as $38,000 — and possibly more — for finding flaws in the world’s most widely used mobile OS.
The closure of a shady telemarketing company came just days after an IDG report revealed new insights into online antivirus-related pressure sells that are netting big bucks from those “Your PC may be infected” advertisements.
David Braue | 15 Jun | Read more
The surge in mobile malware has led many to condemn developers' poor security practices, yet recent NICTA research suggests that – even though data-stealing is ubiquitous among both paid and free Android applications – many mobile application developers are in fact being “duped” into incorporating data-stealing routines into their applications.
David Braue | 03 Jun | Read more
Facebook has joined Microsoft's and Google’s efforts to phase out the use of SHA-1 to sign apps and websites.
After losing his job in a reshuffle, “recovering” journalist Brian Krebs has forged a reputation as one of the world’s foremost information security reporters. While he has broken a number of major security stories, including the Target breach, there are times when things get a little precarious.
Anthony Caruana | 02 Jun | Read more
Large government bodies are tempering the ability of cloud services to deliver customer-service objectives with requirements to comply with privacy legislation and minimise security risk, two high-level executives of government bodies in different countries have shared.
David Braue | 02 Jun | Read more
Facebook on Monday announced a new experimental privacy feature that will allow it to encrypt notification emails sent by the social network to users.
The antivirus field is increasingly competitive, but one Australian vendor is going big guns in its effort to carve out a global niche for its SecuraLive security brand. More options will be a boon for small businesses, who have been given some guidance on security governance through new ISACA publications; other companies will find value in the expertise of Fujitsu Australia, which has leveraged its extensive corporate information-security expertise to build a new consulting and managed-services arm for Australian businesses.
David Braue | 01 Jun | Read more
Increasingly sophisticated online criminal activities have featured heavily in the Australian Crime Commission's (ACC's) latest biennial report on organised crime, which found that money-spinning online fraud has rapidly displaced more conventional crimes as the activities of choice for what the criminal-research body terms “serious and organised crime”.
David Braue | 21 May | Read more
Apple on Tuesday released its first security update for the Apple Watch, bringing Watch OS to 1.0.1 and fixing 14 security weaknesses.
Security researchers are warning some Android users to steer clear of Chrome on Android for websites that require passwords until they’ve got the latest browser or OS. The question is which devices will get the updates?
Employees and contractors of Vodafone Australia will benefit from increased security as part of an ongoing global overhaul of privileged-account management that will strengthen the company's ability to control access to its networks.
David Braue | 18 May | Read more
Call it CSO's regret: four out of five companies that have suffered an IT security breach wish they had done more to prevent it and just 1 in 3 believe they have a strong enough security defence, according to new research.
David Braue | 18 May | Read more
They may have originally embarked on thin-client rollouts for remote access, but government agencies' early acceptance of virtual desktops has proved prescient as security models are challenged by growing use of mobile devices and cloud services.
David Braue | 18 May | Read more
Companies are increasingly turning to threat intelligence to help shape their response to security attacks, which some have argued must become increasingly defensive as the nature of the threat changes over time.
David Braue | 11 May | Read more
Growing demand for wireless data has boosted usage of public Wi-Fi networks for mobile traffic offloading, but a wireless expert has warned that it's still early days for new standards boosting the security and roaming capabilities of public Wi-Fi services.
David Braue | 07 May | Read more
Apple's iPhone and iPad long ago pushed out the BlackBerry as the corporate standard for mobile devices, in all but the highest-security environments. Google -- whose Android platform reigns outside the corporate world -- is now trying to push out Apple, with a new effort called Android for Work. And Samsung is upping the game with a new version of its own Android security suite, Knox.
Galen Gruman | 19 Mar | Read more
The Center for Internet Security, or CIS, is a not-for-profit body based in the US that was established in 2000. They provide benchmarks that are consensus based configuration guides created by experts on different technologies. These are configuration settings that can be used by anyone to assist with hardening their systems.
Anthony Caruana | 01 May | Read more