Most popular
-
AusCERT 2013: Home-electronics gear’s UPnP as insecure in Australia as rest of world: Metasploit
Australia’s Internet space shows the same distribution of vulnerable IP ports as the rest of the world and a dangerous preponderance of insecure Universal Plug ‘n’ Play (UPnP) devices, Metasploit Project founder HD Moore has warned while recounting the surprising results of his efforts to catalogue the results of communicating with every IP address on the Internet.
-
Use of 'honeywords' can expose password crackers
With more and more consumers having their passwords compromised on a daily basis, a pair of researchers are floating an idea that they contend will help foil digital credential crackers.
-
Vulnerable terminal servers reflect bigger security problem
Unsecured ports on industrial control equipment, which could let hackers gain admin access, highlights risk of older equipment on modern tech
-
Vulnerable terminal servers could let bad guys hack stoplights, gas pumps
Thousands of older systems, including those used to manage traffic lights, fuel pumps, point-of-sale terminals and building automation can be tampered with because they're insecurely connected to the Internet.
-
Researcher hijacks insecure embedded devices en masse for Internet scanning project
An anonymous researcher created a massive botnet by hijacking about 420,000 Internet-accessible embedded devices with default or no login passwords and used it to map the entire Internet.
Get exclusive access to CSO, invitation only events, reports & analysis. - 1
Bank trojan targets users of Bitcoin exchange Mt Gox
- 2
Australian Information Security Association issues blunt warning as National Cyber Security Awareness Week begins
- 3
Review: Mobile Device Management
- 4
ACMA database keeps finger on Australia’s malware pulse
- 5
The week in security: Aussie banks targeted as mobiles drive privacy fears
- FT.NET - Sitecore Developer - Melbourne - PermNSW
- FTQuality ManagerSA
- FTTest Analyst (MS Environment) .netNSW
- FTTest EngineerVIC
- FTLead Software EngineerSA
- FTTest Analyst (MS Environment) .netNSW
- FTSenior Python DeveloperNSW
- FTFlash / ActionScript Developer - ContractNSW
- FTR&D EngineerSA
- FTJob Title: Mac Systems/ Enterprise Systems EngineerNZ
- FTOS Web Applications DeveloperNSW
- FTSenior Python DeveloperNSW
- FTSenior Python Web Applications DeveloperNSW
Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).
- Have an incident response plan.
- Pre-define your incident response team
- Define your approach: watch and learn or contain and recover.
- Pre-distribute call cards.
- Forensic and incident response data capture.
- Get your users on-side.
- Know how to report crimes and engage law enforcement.
- Practice makes perfect.
Warning: Tips for secure mobile holiday shopping
I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.
