Opinion
News
Microsoft's Melbourne tests confirm: counterfeit software a security risk
A test of counterfeit Microsoft Windows and Office installers bought from local markets in Melbourne, Australia, seems to confirm the results of recent IDC research: dodgy software is generally either rubbish or a security risk.
Big data and its security implications
There has been a significant amount of talk about big data lately in the media particularly at the RSA security conference. However, many people are still unclear as to what constitutes big data and furthermore what its implications are to us as security professionals. Within this brief article, I shall try and address both these points.
Ransomware – a brief overview
There have been a number of ransomware attacks on Australian businesses lately. Awareness of this threat is increasing, but a number of small businesses, in particular, are still in the dark around what this is and how to protect themselves against it. Within this brief article, I shall try and cover both these points.
Part 3 Business Continuity and implementation
By implementing a national multi-factor authentication system Australian citizens will benefit from having the highest levels of online security in the world. This technology may provide a significant competitive advantage to business in securing digital assets and could lead to innovation based export opportunities. The headlines report massive breaches of information that directly expose our financial systems to grave risk. Australia must set the benchmark in secure digital vigilance to safeguard our information security perimeter from existing and potential threats.
How CIO's meet growing security threats
When it comes to protecting enterprise data, CIOs and CSOs are at a crossroads. The complexity and prevalence of security threats continue to grow, bolstered by consumer IT and mobility. The open nature of IT has paved the way for far more sophisticated attacks—beyond conventional credit card data theft to multilevel attacks. Information security executives face perhaps the toughest challenge of their careers.
Features
Why your information security stinks & what to do
Amit Yoran was the Department of Homeland Security's first director of the National Cyber Security Division of the Information Analysis and Infrastructure Protection office. But by September 2004 he was frustrated by what he saw as a lack of concern and commitment to Internet security. So he quit his post.
IT Advocate: The privacy minefield
There are significant differences between state and federal privacy legislation. CIOs who deal with government agencies or other public sector organisations must determine the privacy laws applicable to them – and how best to accommodate them.
Survey: Despite Risks, Employees Still Holiday Shop at Work
As Cyber Monday approaches, research suggests a majority of workers will use their work computer to shop this holiday season. But despite the continued growth in online shopping, employees and business still don't understand the risk.
Myth or truism? Security experts judge
They are etched into the conventional wisdom of IT security, but are these 12 articles of faith (to some) actually wise, or are they essentially myths? We've assembled a panel of experts to offer their judgments.
Five mistakes security pros would make again
Ten years ago, Michael Riva was network administrator for a top-five American consultancy. Employees were downloading graphic pictures and videos onto the network. Riva told his boss a proxy server with content filtering might be in order; his boss laughed and suggested they put in a bigger file server instead.
Opinions
Protecting your organisation against DDoS attacks
The recent Australian Federal Police arrest of a Sydney hacker claiming to be from the international hacking group Lulz Security (LulzSec) has brought Distributed Denial of Service (DDoS) attacks once again into the limelight.
Stuxnet, Ethics and the Law
This first of 3 part series discusses the development of the Stuxnet malware, the legal and ethical issues. This thought provoking article raises questions into cyber terrorism and weather this is for offensive or defensive purposes.
Login to the real world with your Facebook account
It seems like every other website we visit today presents us with a “login with a social network” button. We are sometimes presented with a choice, usually between Facebook, Twitter or LinkedIn. But the most common social network encountered is Facebook and the most common scenario where we are offered this option is when we attempt to use a technology-focused service online. This is starting to change and we will start to notice it in a matter of months.
What you should know about the Red October virus
In October of 2012, Kaspersky Labs discovered what could be the most powerful and complex computer virus to date. They are calling it Red October, after the submarine featured in the Tom Clancy novel and movie of the same name, because of the way that it has been lurking around for the past five years gathering top secret intelligence from countries all over the world.
SCADA security and understanding the risk impacts
Cyber security threats are on the rise. As a result, there is a focus on systems managing the critical infrastructure that everyone depends upon. Critical infrastructure is loosely defined as assets essential for the economy and overall society to function.
Get exclusive access to CSO, invitation only events, reports & analysis. - 1
Australian Information Security Association issues blunt warning as National Cyber Security Awareness Week begins
- 2
Bank trojan targets users of Bitcoin exchange Mt Gox
- 3
Security a key factor in LogMeIn’s Internet of Things platform
- 4
Big Data Investigations: Opportunity and Risk
- 5
The week in security: Aussie banks targeted as mobiles drive privacy fears
-
Lan 1 meets demand for cloud security with Authentication-as-a-Service
-
Splunk Named a Leader in Gartner Magic Quadrant for SIEM
-
Dell Sets Sights on Cisco, Announces Game-Changing NSA Series That Introduces Powerful Next-Gen Firewall Advances for Mid-sized Businesses and Distributed Enterprises
-
Silver Peak saves Riverbed customers up to 86 per cent with software upgrade program
-
Ovum analysis ranks Orange Business Services ahead of APAC competition for service capability and strategy
- FTTest Analyst (MS Environment) .netNSW
- FTSenior Python DeveloperNSW
- FTTest Analyst (MS Environment) .netNSW
- FTTest EngineerVIC
- FTLead Software EngineerSA
- FTSenior Python DeveloperNSW
- FT.NET - Sitecore Developer - Melbourne - PermNSW
- FTSenior E-Commerce PHP Developer- North Sydney- E-commerce Software $110kNSW
- FTR&D EngineerSA
- FTQuality ManagerSA
- FTWeb Developer- Drupal and PHP. Exciting new position- #2 in Dev team.$100k+SuperNSW
- FTTest Manager - IMMEDIATE STARTNSW
- FTOS Web Applications DeveloperNSW
- FTTechnical Account Manager - MSP + CloudVIC
- FTSenior Projects EngineerNSW
- FTSenior Python Web Applications DeveloperNSW
- FTSnr Web Developer PHP/Magento/API integration into E-commerce sites. $100k+SuperNSW
- FTSenior Field Engineer - MSNSW
Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).
- Have an incident response plan.
- Pre-define your incident response team
- Define your approach: watch and learn or contain and recover.
- Pre-distribute call cards.
- Forensic and incident response data capture.
- Get your users on-side.
- Know how to report crimes and engage law enforcement.
- Practice makes perfect.
Warning: Tips for secure mobile holiday shopping
I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.
