Companies still failing on security basics
29 April, 2016 by Dylan Bushell-EmblingVerizon's latest Data Breach Investigations Report, which analysed 100,000 incidents in 82 countries including Australia, finds that the human element remains the weak link in cybersecurity.
50m identities leaked; Pentagon's $198K bug bounty; Telstra's data day deluge
07 April, 2016 by Andrew CollinsHackers reported to have released data of 50m Turkish citizens, US military issues invitation to test its systems, and Telstra's Free Data Day breaks record.
Point-of-sale vulnerabilities are not going away
02 March, 2016 by Christopher Strand, PCIP, Senior Director of Compliance and Governance, Carbon BlackWith point-of-sale attacks continuing, PoS and payment providers will need to build allegiances and share information more than ever in 2016.
Numerous industries experience patient data breaches
14 January, 2016 by Dylan Bushell-EmblingA study of patient data breaches in 25 countries including Australia found that 18 of the 20 industries examined had fallen prey to such a breach, but many companies are not even aware they retain such data.
Qld's TAFE and education department websites hacked
12 November, 2015 by Dylan Bushell-EmblingQueensland Government CIO Andrew Mills has disclosed that unknown attackers infiltrated the websites of TAFE Queensland and the education department, illegally accessing private data.
OAIC informed of 110 data breaches in 2014–15
29 October, 2015 by Dylan Bushell-EmblingThe OAIC fielded 16,166 privacy inquiries and 110 data breach notifications during a busy 2014–15 and has subsequently joined counterparts in seven other nations to share details of privacy breach investigations.
Australia falls to fifth place in ASPI privacy rankings
28 October, 2015 by Dylan Bushell-EmblingAustralia has fallen behind Japan, South Korea and Singapore in the second annual comparison of the cyber maturity of mostly APAC countries conducted by the Australian Strategic Policy Institute.
Metadata law takes effect, but few if any are compliant
14 October, 2015 by Dylan Bushell-EmblingThe mandatory metadata retention legislation has taken effect, but few if any ISPs are compliant, with many still not even understanding what data they are required to store.
Hilton investigates hack claims; FTC's Google antitrust investigation; Researchers break AWS RSA keys
01 October, 2015 by Andrew CollinsClaims that hackers infiltrated Hilton POS systems, Google under investigation over competitors' access to Android, and researchers say they've recovered RSA keys from Amazon Web Services.
Mobile payments data breaches to grow, say experts
28 September, 2015Almost 90% of cybersecurity experts say mobile payments data breaches will grow, yet 42% report using this payment method themselves, according to a new survey.
Pre-plan your response to a critical security incident
18 September, 2015Considering that 96% of standard defence-in-depth systems have been breached, data violation is seemingly inevitable. It is now about how you will respond when it occurs. The business with the well-designed incident response plan is better off than the business without one.
Stop breaches of government data – 4 strategies
28 August, 2015The high value of personal information and the ease of its marketability has led to Australian government organisations being heavily targeted for cybercrime. The Australian public service must now adopt new security disciplines to combat the inevitable breach and protect high-value and high-risk data.
Keep a step ahead in the malware marathon
28 August, 2015The ever-expanding list of malware is forever evolving. Traditional security software only prevents 45% of current attacks. Now, to minimise the impact of successful breaches, every organisation needs to be prepared to defend, detect and respond at machine speed — relying on humans is no longer possible.
Unmanaged Apple devices expose companies to big risk
28 August, 2015 by Dylan Bushell-EmblingWith Apple devices widely used within the enterprise, poor device management and security processes for the devices are exposing companies to huge liabilities, according to Centrify.
Aussie security pros support legal sanctions for data loss
04 August, 2015 by Dylan Bushell-EmblingNearly all Australian security professionals believe that there should be legal penalties for companies inadequately safeguarding customer data, a survey shows, with some even supporting jailing the CEO.