Monthly Archives: November 2012

Defence Signals Directorate outlines key BYOD considerations

November 29, 2012

A new document from the Australian government Department of Defence's Defence Signals Directorate (DSD) has outlined the key considerations for executives looking at employing a Bring Your Own Device (BYOD) policy in the workplace.

According to the DSD, the popularity of BYOD is on the rise due to the emergence of affordable consumer smart devices which offer a greater level of personal freedom, convenience and flexibility to employees.

Continue reading

Holiday bargain hunters switch on to mobile shopping

As Australian organisations gear up for the busy Christmas season ahead, retailers in the USA are just now recovering from one of the biggest online shopping days of the year – Cyber Monday.

The Monday following Thanksgiving and the more traditional shopping day of Black Friday has quickly grown to prominence in recent years as a time for consumers to go online and hunt down bargains from the comfort of their own homes.

Continue reading

ISACA study reveals risky behaviour still commonplace despite better overall awareness

November 27, 2012

Nine out of every ten people who use a computer or smart device for work now understand that their online privacy and security is in danger, yet many are still persisting with dangerous behaviour that could be placing themselves and their employer at risk.

According to the 2012 IT Risk/Reward Barometer from ISACA, 65 per cent of people choose not to verify the security settings of online shopping sites before submitting personal information.

Continue reading

Three key steps to ensuring the digital security of your organisation

November 25, 2012

In the past, organisations may have been able to get away with ensuring the bare minimum in cyber security practices and vulnerability management.

In the modern information era however, this is no longer the case. With people now choosing to store more essential information online, taking stringent steps to ensure the security of your organisation has become more important than ever before.

Continue reading

Future cyber security experts flock to Brooklyn for NYU-Poly Cyber Security Week

November 23, 2012

Students from all over the USA descended on downtown Brooklyn, New York earlier this week to compete in the ninth annual Cyber Security Week (CSAW) – the world's largest ethical hacking educational event.

The campus of the Polytechnic Institute of the New York University (NYU-Poly) played host to hundreds of competitors who had earned their place in the finals through a preliminary round which initially featured more than 10,000 entrants.

Continue reading

‘Grey hat’ hacker convicted for 2010 AT&T security breach

Businesses aware of the importance of cyber security and vulnerability management may be interested to know that a US federal jury has officially convicted noted computer hacker Andrew Auernheimer for his part in an AT&T security breach which occurred in mid-2010.

The high profile incident involved Auernheimer and a loose affiliation of grey hat security experts exploiting a vulnerability in the AT&T security system which enabled them to access the personal email addresses of 114,000 iPad users.

Continue reading

Nationwide Insurance impacted by security breach

The personal information of more than 28,400 US households may have been accessed by computer hackers, as reports emerge of an online security breach involving Nationwide Insurance Co.

Georgia insurance commissioner Ralph Hudgens has confirmed the breach occurred, and a consumer hotline has been set up for people who are concerned they may have been affected.

Continue reading

PCI SSC issue risk assessment guidelines to assist with PCI DSS compliance

November 20, 2012

The Payment Card Industry Security Standards Council (PCI SSC) has issued new guidelines for organisations looking to assess their level of risk regarding payment card data security.

The PCI SSC is perhaps best known for establishing the Payment Card Industry Data Security Standard (PCI DSS), a set of best practice regulations for any retailer who accepts payment or credit card information from customers.

Continue reading

PCI DSS essential during busy holiday season

November 18, 2012

The National Cyber Security Alliance (NCSA) and McAfee are warning online shoppers to take care when buying things over the internet ahead of the start of the busy Christmas shopping season.

In a statement issued November 14, NCSA executive director Michael Kaiser warned that cyber criminals would likely be out in force and hunting for easy targets as people turn to the web to do their holiday shopping.

Continue reading

Ponemon Institute, Radware study shows organisations vulnerable to DDoS attack

Distributed Denial of Service (DDoS) attacks have become a major threat to cyber security and modern vulnerability management in recent years, costing enterprises around the world an estimated 3.5 million dollars per annum.

Yet new research from the Ponemon Institute and Radware has found that many organisations are still not taking the necessary steps to reduce the chance that they will be affected by such an attack.

Continue reading