Mobile malware accounted for nearly 1 in 10 malware strains detected during the first quarter, Fortinet has warned on the back of research findings that also suggested that a similar proportion of companies had been hit by ransomware during the quarter.
David Braue | 14 Jun | Read more
Mimecast’s Garrett O’Hara spoke at this year’s AusCERT conference on the issue of cyber resilience and how companies, large and small, are being impacted and defrauded through email-born attacks.
Anthony Caruana | 14 Jun | Read more
Anyone who has had a leadership role in IT knows that when discussions about disaster recovery and business continuity start, your work life is about to become either a lot more interesting or a lot more complex. The trouble is, when other business functions think about incidents that could impact business operations, they invariably draw their attention towards the technology they rely on.
Anthony Caruana | 13 Jun | Read more
A panel discussion at the recent Emerging Cyber Threats Summit, held in Sydney, looked at cybersecurity and the future of the digital economy. With more and more commerce and collaboration taking place digitally, there are great rewards but new risks that need to be considered.
Anthony Caruana | 13 Jun | Read more
Working alongside the Prime Minister’s special adviser for all things cyber gives Jacob Boyle a unique perspective on the government’s role in securing the country – not just with all the services offered by government but also in working with businesses and the security industry.
Anthony Caruana | 13 Jun | Read more
Malware writers have come up with a novel way to install malware from Office that doesn't rely on tricking users to enable macros.
Users tend to receive the most emails with malicious attachments on Thursdays and they’re most likely to click on messages in the morning purporting to be from the local postal service, according to an analysis of email attacks that has reinforced the importance of time and human factors for cybersecurity protection.
David Braue | 08 Jun | Read more
On 22 February 2018, new laws mandating businesses to report the leak of personal identifiable information (PII) to the Office of the Australian Information Commissioner (OAIC) come into effect. During this year’s AusCERT conference Ben Di Marco and Matthew Pokarier walked through this new law and what it means for businesses.
Anthony Caruana | 08 Jun | Read more
Australian IT experts are struggling to secure increasingly complex networks and increasing compliance pressure isn’t providing enough incentive for change, a security expert has warned as looming breach-notification legislation threatens to publicly expose poor risk management practices and their consequences.
David Braue | 08 Jun | Read more
Any company operating a multi-storey office building would develop painstaking fire escape plans, and any hospital would develop backup plans detailing how it could operate in the event of a power failure. So, if responsible businesses are actively addressing these risks, why are so many companies still failing to lay down detailed plans for dealing with a cybersecurity incident?
David Braue | 08 Jun | Read more
Even if you change the default passwords on these cameras, hackers can still bypass it if they know the hardcoded passwords.
While AI and machine learning are buzzwords, Symantec's Nick Savvides said, during this year's AusCERT conference they have been a big deal in computing circles since the 1950s. But it was in the 1980s when AI came into mainstream thinking a culture. It was movies like War Games and The Terminator, and TV shows like Knight Rider that took this important technology and moved it into mainstream consciousness.
Anthony Caruana | 05 Jun | Read more
AusCERT’s annual conference returned, with experts across a variety of fields echoing concerns about changing legal and technological policies as well as reassessing the role of identity-based perimeters and the dangers posed by the intersection of convenience and trust.
David Braue | 05 Jun | Read more
With so many security projects and initiatives taking place across Australia and New Zealand, being chosen as the best security initiative of the last year is a great recognition of strong work over the last year. Kasada (https://www.kasada.io) was rewarded for their work on thwarting bot attacks at the 2017 AusCERT conference.
Anthony Caruana | 05 Jun | Read more
Todd Peterson, from One Identity, delivered the second part of the AusCERT 2017 opening keynote. One Identity may sound like a new business but it’s an offshoot from Dell EMC and Quest Software.
Anthony Caruana | 30 May | Read more
One of the last places you’d expect to find a corporate lawyer is a cybersecurity conference. But as the regulatory and legal landscape for businesses change the intersection between policy and technology is widening.
Anthony Caruana | 29 May | Read more
Web sites that updated to 3.7 are vulnerable to an easily exploited critical SQL injection flaw.
As the introduction of Australia’s mandatory Notifiable Data Breaches (NDB) legislation looms ever larger, many companies are limiting their ability to comply with the new rules by erroneously reassigning data-security budget to conventional governance, risk and compliance (GRC) activities.
David Braue | 17 May | Read more
After a year in which |Budget allocations focused on cybersecurity industry and capability development, that industry has cautiously welcomed the more targeted funding announced as the Turnbull government uses this week’s federal Budget for 2017-18 to respond to a series of government IT-security disasters.
David Braue | 11 May | Read more
Increasingly-accessible penetration testing services are helping businesses build iterative security testing into product development lifecycles and Internet of Things (IoT) manufacturers are among the most enthusiastic adopters, the head of IBM’s penetration testing operation has reported as the nascent unit nears the end of its first year in operation.
David Braue | 11 May | Read more