Top Stories
News
ACMA database keeps finger on Australia’s malware pulse
Bit9, FireEye, Palo Alto Networks team to hit zero-day malware
Opinion varies on action against Chinese cyberattacks
Chinese hackers resume attacks on U.S. targets
Govt asks industry for help to stem security breaches
Peculiar malware trail raises questions about security firm in India
Attack on Telenor was part of large cyberespionage operation with Indian origins: report
Smartphones take center stage in two-factor authentication schemes
Facebook, financial firms targeted by online maurauders
Pressure mounts for building in security during application development
The week in security: Aussie banks targeted as mobiles drive privacy fears
Bank trojan targets users of Bitcoin exchange Mt Gox
Industries
The Ins and Outs of Cloud and Outsourcing
Australian Information Security Association issues blunt warning as National Cyber Security Awareness Week begins
Despite $1.46b furphy, 2013-14 Budget offers slim pickings for cyber security
SCADA security and understanding the risk impacts
Cyber Security and the CIO Challenge
Trend Micro's new paradigm: old (but good) advice in a new bottle
Westpac email scam detected
ASIC blocks Global Capital Wealth websites
Microsoft releases Hotmail, Skype government user data requests
Youth Advisory Group on Cybersafety program unveiled
Establishing a Cloud Broker Model – Part 1
AFP shuts down P2P child abuse network
Data Protection
ACMA database keeps finger on Australia’s malware pulse
Bank trojan targets users of Bitcoin exchange Mt Gox
Australian Information Security Association issues blunt warning as National Cyber Security Awareness Week begins
Virtual desktops win the security case for Brisbane lawyers
Despite $1.46b furphy, 2013-14 Budget offers slim pickings for cyber security
The new IAM: nailing shut the door on the Trojan horse
Trend pitches Deep Discovery service to Australian customers
VMWare wants software defined data centres for better security
Evolve Security Conference 2013 rolling coverage
Banks must innovate around IT-security regulatory hurdles: NAB
Malware vendors accept Bitcoin but mules and fake IDs keep it at bay
Stuxnet, Ethics and the Law
Identity & Access
The week in security: Government puts its cybersecurity money where its mouth is
The week in security: Govt targets cybercrims; cybercrims target banks, unis
Business banking: Liable for trojan fraud and flying blind
The week in security: Was it the FBI's Apple data, or not?
Win8 SmartScreen nudges software sellers to buy code signing certs
Understanding identity underpins BYOD security
Standards could turn social networks into trusted ID brokers: NetIQ
Five steps to mastering identity and access management
Auscert 2012: Day 2 Roundup - Roll your sleeves up its Gala Day
AusCERT 2012 Day 1 : IDS too noisy, too demanding: Stratsec
Adobe learns that security is a numbers game
Advanced Persistent Threats (APTs) — a Synopsis
Business Continuity
Symantec targets mid to large businesses with Backup Exec 3600
The week in security: Huawei, ZTE, Galaxy Tab deemed unacceptable for business use
The week in security: Govt targets cybercrims; cybercrims target banks, unis
The week in security: Was it the FBI's Apple data, or not?
Part 3 Business Continuity and implementation
How CIO's meet growing security threats
Backup, DR part of security processes: Telsyte
Storing in the cloud securely: 30 services compared
Auscert 2012: Day 2 Roundup - Roll your sleeves up its Gala Day
The in-depth guide to data destruction
Symantec releases faster next-gen NetBackup, Backup Exec software
Windows 8 can scrub data from disk, but not up to tough security specifications
Physical Security
CS-Cart v3.0.4 has PayPal ‘buy without paying’ glitch
Oz watchdog eyes whitelisting as “reasonable” privacy measure
Week in security: FreeBSD hacked as Facebook, Adobe redouble security efforts
Exposing insider threats
Social engineer whiz kid Cosmo gets six-year Internet ban
Aussie drug prescriptions sit pretty for health fraud
Security surveillance gets smarter
Exactly what is Homeland Security watching for on Facebook, Twitter, YouTube?
Researchers crack satellite encryption
Security Manager's Journal: Should physical security belong to us?
Carrier IQ security risks overblown?
Cyber-thieves using DDoS to distract banks and victims from spotting fraud
Security Leadership
Australian Information Security Association issues blunt warning as National Cyber Security Awareness Week begins
AFP takes cyber safety to the people
Dimension Data focuses on enterprise mobility, security in 2013
Nasty Ruby on Rails vulnerabilities highlight small websites' risk to us all
IN PICTURES: Symantec revs it up at Telstra 500 (67 photos)
AISA National Conference 2012 set to repeat last year’s success
How CIO's meet growing security threats
Six tips for developing a security culture
Week in security: The future of security is agile
Security spend grows but reactive, not agile security dominates: Telsyte
Trend Micro A/NZ hires new managing director from global ranks
Information Security Awareness — why isn’t it working?
Career Training
IT grads ambitious, but lack the security skills companies need: panel
IT security skills shortage demands training, hiring rethink: Earthwave
Trend Micro A/NZ hires new managing director from global ranks
Telstra seeks CISO to work with the Dept of Defence
Security Manager's Journal: A rush to judgment on DLP deployment
Techie seeks job by using malware, blackmail
Bruce Schneier awarded honorary degree from Westminster University
The CFO's role in the data breach war
Ethical hacking course offered by Coventry University
The Security Industry All-Stars
Where's the Steve Jobs of IT security?
ISMS Certification for Outsourced Service Providers
Risk Management
Nasty Ruby on Rails vulnerabilities highlight small websites' risk to us all
The week in security: Attacks continue; are you ready for 2013?
DSD confirms: application whitelisting is the go
Six tips for developing a security culture
Week in security: The future of security is agile
Embedding risk culture
The six pillars of security operations
Apple Security
Oracle updates Java 7 after Apple’s browser plugin block
Review: Mobile Security
Could 2013 be the year we finally sort out security?
The week in security: Attacks continue; are you ready for 2013?
The week in security: Govt targets cybercrims; cybercrims target banks, unis
Apple patches more than 160 Windows iTunes flaws
The week in security: Was it the FBI's Apple data, or not?
CSO: the art of catching the board's ear
2012: Next-generation threats need next-generation firewalls
Auscert 2012: Day 2 Roundup - Roll your sleeves up its Gala Day
Kaspersky kills flawed FlashBack removal tool
Does FlashBack really have 600k Macs?
Open Source Security
Review : Clearswift SECURE Web Gateway 2.5
Google to auto probe Android Market for malware
Cnet de-trojans Nmap, but outrage continues
WatchGuard launches iOS-friendly security appliance
Hackers launch millions of Java exploits, says Microsoft
OpenPGP JavaScript implementation allows webmail encryption
Linuxfoundation.org, Linux.com down after security breach
Hack brings down Linux websites
Hack or no hack, the Linux kernel is well-protected
Security rundown for week ending Aug. 12
Super Glue website comes unstuck after Javascript attack
Mozilla retires Firefox 4 from security support
Opinions
The Ins and Outs of Cloud and Outsourcing
Protecting your organisation against DDoS attacks
Stuxnet, Ethics and the Law
Login to the real world with your Facebook account
What you should know about the Red October virus
SCADA security and understanding the risk impacts
Cyber Security and the CIO Challenge
Microsoft's Melbourne tests confirm: counterfeit software a security risk
Why acknowledging the cyber war and embracing cyber resiliency must be priority one
Establishing a Cloud Broker Model – Part 1
Big data and its security implications
Ransomware – a brief overview
IPv6
SANS: Closeted IPv6 causing “angst” amongst security pros
The week in security: New threats drive cloud-security evolution
IP voice security: are you susceptible or strong?
DDoS attackers start targeting IPv6 networks
IPv6 deployment starts at the network edge
IPv6: Dual-stack strategy starts at the perimeter
Hackers target IPv6
Boost in IPv6 use is only one step to solution
IPv6: Click, Clack, Front and Back
Will the sky fall if you don't deploy IPv6?
IPv6 boosts schools' on-net security
Companies shun, hide IPv6 rollouts due to security fears
Meet the CSO Journos
Featured Resources
Twitter Feed
-
CSO_Australia Follow @cso_australia on twitter for all the updates and sessions from #AusCERT2013 -
CSO_Australia Gold coast arrived and unpacked, writing briefing notes now while @Lafinboy has gone back to the 80s #auscert2013
-
CSO_Australia ACMA database keeps finger on Australia’s malware pulse http://t.co/Qmem11F1ba
-
CSO_Australia Bit9, FireEye, Palo Alto Networks team to hit zero-day malware http://t.co/s5nKjNEqk8
-
zyzzyvamedia [plug] @acmadotgov database keeps finger on Australia's #malware pulse http://t.co/qrCLs247at via @CSO_Australia #security #spam #ISP
Training
-
Cloud Computing Security Knowledge (CCSK) Plus
When: 17/05/2012 - 08/10/2012
The CCSK Plus training course enables the proactive management of the threats associates with Cloud Computing adoption
Whitepapers
-
Protecting Your Data, Intellectual Property, and Brand from Cyber Attacks
Enterprises and government agencies are under virtually constant attack today. It is clear that the cybercriminals, ...
-
New Demands for Real-time Threat Management
Many organisations are evaluating a new security model based upon IT risk management best practices. This ...
-
Advanced Persistent Threats and Real-Time Threat Management
Businesses face a constantly evolving threat landscape. One of the greatest challenges is presented by advanced ...
Galleries
Latest Blog Posts
Top IT Security Bloggers
Videos & Podcasts
-
Play video
Hackers around the world hack NASA data for good
-
Play video
Mobile Malware Development Continues To Rise, Android Leads the Way. Part Three
-
Play video
Mobile Malware Development Continues To Rise, Android Leads the Way. Part Two
-
Play video
Mobile Malware Development Continues To Rise, Android Leads the Way. Part One
CSO Corporate Partners
Get exclusive access to CSO, invitation only events, reports & analysis. Most Read
- 1
Bank trojan targets users of Bitcoin exchange Mt Gox
- 2
Australian Information Security Association issues blunt warning as National Cyber Security Awareness Week begins
- 3
Review: Mobile Device Management
- 4
The week in security: Aussie banks targeted as mobiles drive privacy fears
- 5
Security a key factor in LogMeIn’s Internet of Things platform
CSO Directory
Media Releases
-
Clamp the cable clutter with 4Cabling
-
AVG Technologies Launches its Latest Range of Performance Applications for Android™
-
Lan 1 meets demand for cloud security with Authentication-as-a-Service
-
Splunk Named a Leader in Gartner Magic Quadrant for SIEM
-
Dell Sets Sights on Cisco, Announces Game-Changing NSA Series That Introduces Powerful Next-Gen Firewall Advances for Mid-sized Businesses and Distributed Enterprises
Latest Jobs
- FTOS Web Applications DeveloperNSW
- FTLead Software EngineerSA
- FTTest Analyst (MS Environment) .netNSW
- FTSenior Python Web Applications DeveloperNSW
- FTTest Analyst (MS Environment) .netNSW
- FTSenior Python DeveloperNSW
- FTJob Title: Mac Systems/ Enterprise Systems EngineerNZ
- FTTest EngineerVIC
- FTSenior Python DeveloperNSW
- FT.NET - Sitecore Developer - Melbourne - PermNSW
- FTR&D EngineerSA
- FTQuality ManagerSA
- FTWeb Developer- Drupal and PHP. Exciting new position- #2 in Dev team.$100k+SuperNSW
Solution Centres
Security Awareness Tip
Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).
- Have an incident response plan.
- Pre-define your incident response team
- Define your approach: watch and learn or contain and recover.
- Pre-distribute call cards.
- Forensic and incident response data capture.
- Get your users on-side.
- Know how to report crimes and engage law enforcement.
- Practice makes perfect.
Security ABC Guides
Warning: Tips for secure mobile holiday shopping
I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.
