Data breach news stories
Weak breach data disclosure laws for IP theft leaves vital Australian industries vulnerable
Infoblox has seen unprecedented levels of demand for cyber protection from companies outside of the Critical Infrastructure Act who have discovered security events and those who fear falling victim to IP theft.
Privileged Access Management / PAM
The importance of stopping identity sprawl for cybersecurity
The 2021 Data Breach Investigations Report (DBIR) shows that 61% of all breaches involve malicious actors gaining unauthorised, privileged access to data by using a compromised credential. Unfortunately, it is often too late when the misuse of a credential is detected.
Research shows attacks on the gaming industry are getting worse
Web application attacks in the gaming sector have grown by 167% from Q1 2021 to Q1 2022, according to new research from Akamai.
Mobile Device Management / MDM
Claroty's Team82 uncovers two vulnerabilities in FileWave’s MDM system
Claroty’s research arm (Team82) has uncovered and disclosed two critical vulnerabilities in FileWave’s Mobile Device Management (MDM) system.
Cyber criminals continue to find new methods of attack
"This is no time for security teams to let their guard down as cyber criminals are getting even more bold in how they score their next payday."
Rapid7 report examines use of double extortion ransomware attacks
New insight into how attackers think when carrying out cyber attacks, along with further analysis of the disclosure layer of double extortion ransomware attacks, has come to light.
What every CISO must answer to enable a best-in-class security operations program
It has been widely reported recently that South Australian government employees have been the victims of a cyberattack.
Sift shares crucial advice for preventing serious ATO breaches
Are you or your business struggling with Account Takeover Fraud (ATO)? One of the latest ebooks from Sift can provide readers with the tools and expertise to help launch them into the new era of account security.
ThoughtLab reveals 10 best practices for cybersecurity in 2022
The benchmarking study reveals best practices that can reduce the probability of a material breach and the time it takes to find and respond to those that happen.
WAF Multi-Vector and DDoS attacks are spiking in Australia
According to a new observation by Akamai, Australia has experienced a massive spike in WAF Multi-Vector and DDoS attacks.
Salesforce resets user passwords as GitHub breach investigation continues
Salesforce is increasing its security measures after a recent GitHub breach incident investigation reported in Heroku.
APAC unprepared to weather storm of cybersecurity breaches
Sixty eight percent of enterprises in Asia Pacific suffered from at least on security breach in 2021, according o a new report from Forrester.
Four critical cyber attack prevention strategies in 2022
The growing threat of cyber adversaries loomed over organisations throughout 2021, and it shows no signs of slowing down as we enter March 2022.
The patch management challenge
We all know that patching is important, so why is the physical process for updating systems across the enterprise still so difficult?
Spear-phishing attacks on the rise, with risk to small businesses
According to a new report by Barracuda, Spear-phishing attacks are evolving and becoming significantly more common.
New report shows increase of ICS vulnerabilities in critical infrastructure
The amount of Industrial Control System (ICS) vulnerabilities in critical infrastructure sectors have been found to have increased by 110% over the last four years, according to a new report by Claroty.
Office of the Australian Information Commissioner
Australian data breach statistics revealed in OAIC report
The Office of the Australian Information Commissioner (OAIC) has released its Notifiable Data Breaches Report for July to December 2021, revealing some surprising results around breach disclosure in Australia.
NCSC warns risk of cyber attack amid Russia/Ukraine tensions
The National Cyber Security Centre (NCSC) has encouraged NZ's crucial organisations to examine their cyber security preparedness in light of the increased tensions between Russia and Ukraine.
NCSC joins data breach service in government programme
The National Cyber Security Centre (NCSC) has become part of the data breach service Have I Been Pwned’s (HIBP) government programme.
Advanced scams, data breaches, crypto and NFT attacks to shape cyberthreat landscape in 2022
The times of pandemic coincided with the rise of targeted ransomware attacks worldwide focusing on the most valuable targets as well as interruption-sensitive businesses.
Biggest data breach will hit in 2022 - Micro Focus
In the aftermath of digitalisation on a scale that we haven’t seen before, 2021 has left many organisations still scrambling to secure their IT networks.
Log4j actively exploited, serious complications can occur according to CERT NZ
The widely-used java logging library, log4j, has been actively exploited, according to an update from CERT NZ and Catalyst.
To disclose or not to disclose?: The significance of data breach disclosure in Aotearoa
A data breach can be any company's worst nightmare. Not only can it cause catastrophic damage to systems and workflows, but it can also often be extraordinarily damaging and costly.
Rubrik enhances cyber resilience solutions to protect against ransomware
With this latest release, organisations can improve ransomware preparedness, respond with more intelligent and integrated tools, and recover from attacks faster, the company states.