Google combats BEC fraud with Gmail ‘unintended external reply’ warnings
Gmail will now automatically warn business users if they're about to send an email to a fraudster.
Gmail will now automatically warn business users if they're about to send an email to a fraudster.
We have all say through the standard company training on cyber-security. It usually starts with an hour or two trapped in a packed seminar room, surrounded by colleagues pretending to take notes but really playing Words With Friends on their smartphones, followed by bad coffee and slightly stale pastries.
Anthony Caruana | 31 May | Read more
Christina Camilleri is a security analyst at Bishop Fox, a security consulting firm providing IT security services to the Fortune 500, global financial institutions, and high-tech start-ups. Although she works on the “right” side of the security business, she is not only interested but also highly skilled in penetration testing and red teaming – assuming the role of a hacker in security exercises.
Anthony Caruana | 31 May | Read more
Security researchers are pressing ahead with a problematic plan to pay for access to monthly dumps from the murky Shadow Brokers operation.
With specific-purpose tools becoming obsolete within years, long-term vision requires better views of extending networks
David Braue | 31 May | Read more
One of the last places you’d expect to find a corporate lawyer is a cybersecurity conference. But as the regulatory and legal landscape for businesses change the intersection between policy and technology is widening.
Anthony Caruana | 29 May | Read more
The uncertain security climate created in the wake of the WannaCry ransomware outbreak is becoming the “new normal”, experts warned as the security world pivoted away from the immediate implications of the attack. Analyses flew thick and fast; survival stories were traded; and scammers targeted victims and buried malware in purported fixes for the problem.
David Braue | 29 May | Read more
Fraudsters quickly jump on the WannaCry hype to spread adware and scare victims into paying.
A patch for a 'remotely exploitable' flaw in Miele's medical dishwashers revealed in March is available, but hospitals will need to book a time with a Miele technician to install it.
Concerted industry efforts are likely to produce a decryption tool for the WannaCry ransomware attack within months, the head of one vendor’s security team has predicted while warning that the attack’s emboldened creators may be using it as a distraction for other malicious activity.
David Braue | 18 May | Read more
Australians may have avoided the worst of the weekend’s massive WannaCry ransomware attack, which hit over 200,000 users and disabled businesses around the world over the weekend, but experts are warning that businesses that don’t double down on their cybersecurity defences may be T-boned as the first-generation ‘kill switch’ weakness is fixed and new variants of the ransomware worm are unleashed into the wild.
David Braue | 15 May | Read more
After a year in which |Budget allocations focused on cybersecurity industry and capability development, that industry has cautiously welcomed the more targeted funding announced as the Turnbull government uses this week’s federal Budget for 2017-18 to respond to a series of government IT-security disasters.
David Braue | 11 May | Read more
An entity that is required to comply with the Privacy Act 1988 must take reasonable steps to protect the personal information it holds from misuse, interference and loss, as well as unauthorised access, modification or disclosure. This extends to situations where an entity engages a third party to store, maintain or process personal information on its behalf.
Wayne Tufek | 28 Apr | Read more
IBM has rolled out its Watson cognitive capabilities to do battle with rival enterprise mobile device management (MDM) platforms.
Microsoft wants hackers to focus on malicious attachments and macros.
The inauguration of Donald Trump as US president led some to wonder whether a DDoS attack on Whitehouse.gov can be considered as a legitimate protest like any other. There was also buzz as outgoing president Obama’s pardon of secret leaker Chelsea Manning led to [an offer by Julian Assange to face extradition to the US.
David Braue | 23 Jan | Read more
Even as many companies try to plug security holes by introducing ever-tighter endpoint management tools, some security pundits are advocating for a higher level of protection that takes the surveillance state to the employee desktop.
David Braue | 17 Jan | Read more
The sabre-rattling over Russia’s hacking of the US election continued, with president-elect Trump conceding that Russia was probably responsible despite a report that left many questions unanswered.
David Braue | 17 Jan | Read more
Data breaches continue to get bigger and badder, with Yahoo announcing the compromise of 1 billion accounts – back in 2013, meaning that hackers had three years to abuse the breach. As with the other biggest data breaches suffered throughout the year, there were several things every user should do.
David Braue | 19 Dec | Read more
CISOs are still few and far between in Australia, where new figures suggest many companies are channelling money into security consultants rather than hiring information-security executives.
David Braue | 13 Dec | Read more