SecurityBrief Australia - Australia's leading source of security and threat news

Interpol announces it will join the Coalition Against Stalkerware

The international criminal police organisation Interpol has announced that it will join forces with the Coalition Against Stalkerware, which cybersecurity company Malwarebytes is a part of.More

30 Apr

Attivo Networks announces SentinelOne integration to increase threat protection

The integrated solution creates a defence against sophisticated attackers and provides comprehensive coverage across a broad set of attack techniques, as documented in the MITRE ATT&CK matrix.More

30 Apr

Protecting endpoints (and users) that have left the office

To access work emails, it may suffice to use with multi-factor authentication. But if users want to access customer data, that security control isn’t enough.More

30 Apr

Dell Technologies partners with SecureWorks for new security service

The new Dell Technologies Managed Detection and Response powered by Secureworks TaegisXDR provides 24/7 security across endpoint devices, data centre networks and cloud environments.More

Phishing, monetary gain and supply chain attacks characterise cybercrimeMore

Targeted ransomware attacks on the rise, Kaspersky findsMore

Corporate security failing to keep pace in new COVID-19 worldMore

Interview: SAS outlines the seven AI-based trends you'll see in 2021More

Snowflake completes IRAP assessment, looks to enable Aus GovtMore

Working capital finance: what is it and how to applyMore

Cybercriminals influencing financial markets, report finds

The financial sector is being targeted by cybercrime cartels and nation-states, and the bank heist has evolved significantly — from a heist to a hostage situation.More

Messaging app used to control and distribute malware

Hackers are using instant messaging app Telegram for remote control and distribution of malware, according to Check Point Research.More

COVID-19 has changed the way companies handle data security

According to data classification company Titus, the rise in remote working under COVID-19 has delivered far-reaching changes in how we do business, with significant implications for CISOs, compliance, and data governance officers. More

New onboarding standard to secure Internet of Things launched

A new onboarding standard to secure Internet of Things has been created by the FIDO Alliance. More

Kaspersky launches new course to defend users against doxing

"Knowing the threats that are out there makes it easier to take measures to avoid them, and one such threat is doxing - the act of gathering and revealing identifying information about someone online against their will."More

CrowdStrike launches integrations to advance NDR for enterprise

"This integration with NDR partners provides mutual customers a comprehensive, holistic cybersecurity solution with enhanced visibility, streamlined detection and response and frictionless automation."More

Ransomware recovery costs more than doubled in past year

"The findings confirm the brutal truth that when it comes to ransomware, it doesn't pay to pay."More

Why Laminar Communications is all-a-chatter about messaging app LamChat

“We built our own messaging app to ensure it connects with our server. We used open-source code where possible and the programmers are people who live in Brisbane.”More

COVID-19-themed threats, Powershell malware continue surge

“The world—and enterprises—adjusted amidst pandemic restrictions and sustained remote work challenges, while security threats continued to evolve in complexity and increase in volume."More

Enterprises prioritise customer data protection but continue to leave it exposed

“Breaches of personal information strike at the heart of the relationship between enterprises and their customers."More

CISOs facing rising security debts

Chief information security officers are facing a rising security debt to secure their organisations against an increasing volume of attacks by well-armed criminals. More

Zscaler expands CIEM solutions with Trustdome acquisition

Zscaler, the cloud security company, has officially entered into a definitive agreement to acquire Trustdome, a Cloud Infrastructure Entitlement Management (CIEM) company.More

Sophos solution steps up the MDR game

Other Managed Detection and Response services simply notify you of attacks. With Sophos Managed Threat Response, a team of threat hunters take targeted actions to neutralise advanced threats.More

Egnyte ensures greater security across Microsoft 365 with latest integrations

The new integrations are aimed at helping mid-sized organisations prevent data loss, address a growing number of regional privacy regulations, and simplify the overall management of content with minimal administrative overhead.More

I, Technologist: Democratising data & technology for all employees

“We now have a once-in-a-generation opportunity to turn this moment of truth for technology into a moment of trust."More

New research by Netacea into digital fingerprint and identity thief

Bot detection and mitigation company Netacea has published new research into the Genesis Market, an invite-only deep web marketplace that trades in digital fingerprints and enables buyers to impersonate victims online.More

Six key characteristics of a modern secure web gateway

For organisations to continue to thrive in a distributed work environment, they must ensure that security is also modernised to support new realities appropriately.More

Trend Micro launches cloud security platform on AWS Marketplace

Organisations that build on AWS are now able to leverage Trend Micro Cloud One to protect their cloud-based environments.More

Vectra AI releases new endpoint integration to Cognito platform

Cloud network detection and response company Vectra AI has released extended endpoint detection and response native integration into its Cognito platform.More

Sharp increase in cyber attacks in last quarter of 2020 - report

There was an increase in the number of attacks aimed at the trade industry and medical institutions, as well in the number of social engineering attacks on individuals.More

Entrust acquires identity verification company WorldReach

Global security company Entrust has acquired WorldReach, enabling solutions for Digital Traveller and Citizen Identity experiences.More

Users becoming more savvy with COVID phishing scams

“With COVID-19 being around for over a year now and employees becoming more aware of the types of scams that have come out related to the pandemic, cyber criminals are having less success with related phishing attacks."More

Why organisations should make adaptability their #1 security requirement

Adaptability is the key to providing a strong security posture for organisations that are still weighing up their future scenarios to secure a workforce that is largely distributed versus one that’s mainly in the office. More

Fortinet looks to reduces cyber skills gap with Training Advancement Agenda

“Fortinet is committed to solving today’s biggest cyber challenges, including addressing the talent shortage the industry faces, as both a technology company and learning organisation."More

iland and Cohesity form alliance, target data protection market

"Together with Cohesity, we will deliver elegant and cutting-edge solutions that will take our joint customers’ digital transformation projects to the next level."More

97% of organisations experienced a mobile threat in 2020 — report

93% of these attacks originated in a device network, which includes attempts to trick users into installing a malicious payload via infected websites or URLs, or to steal users’ credentials.More

Thycotic and Centrify complete merger, target PAM market

The combined company has now begun integrations and will operate under the temporary name ThycoticCentrify.More

Automotive Security Research Group selects ThreatQuotient

ThreatQuotient is throwing its weight behind the development of automotive cybersecurity, specifically threat intelligence sharing for automotive products.More

Why the rise of containers has created a vulnerability crisis

A rise in the use of Kubernetes and Docker services — and increased adoption of DevOps methodologies — have all contributed to the rise in popularity of containers. But as with all emerging technologies, there are risks.More

Palo Alto Networks establishes cybersecurity consulting group Unit 42

The group will help enterprises respond to emerging threats as they navigate an increase in costly, crippling cyberattacks.More

NVIDIA takes AI into the heart of cybersecurity with Morpheus

The Morpheus application framework will provide security partners with AI-enhanced tools that can detect and prevent security threats.More

A look at the MS Exchange zero-days and how to protect your business

Every organisationusing Microsoft Exchange must patch their on-premise servers immediately and scan their networks for signs of malicious activity.More

Avast identifies new cryptocurrency malware Hackboss

Researchers from Avast, the global digital security and privacy company, say they have identified new cryptocurrency-stealing malware.More

Organisations faced unprecedented ransomware risk in 2020

Enterprises faced unprecedented cybersecurity risk in 2020 from increasing attack volume, the pandemic-driven digital transformation of work, and generally deficient cyber preparedness and training.More

Why organisations should rethink the approach to retail demand planning and forecasting

Why organisations should rethink the approach to retail demand planning and forecastingMore

Quest Software launches solutions for operations, protection and governance

"We are excited about this new strategic direction and believe it will deliver strong value for our global customers as they further their data-centric transformation projects."More

ThycoticCentrify launches additions to DevOps Secrets Vault

"With the need for cloud security skyrocketing, enterprises can now address these new use cases more efficiently with an integrated solution.”More

Attivo Networks’ ADAassessor secures Active Directory

Active Directory is exposed to many vulnerabilities, but the good news is there’s a way to secure and detect attacks in real time. ADAssessor provides continuous visibility to keep your critical AD processes secure.More

6clicks partners with Microsoft to bring greater security to Aus Government

Initially, the new offering will support the information security needs of Australian government departments and agencies as they seek to improve their risk and compliance maturity.More

Malicious cryptominer exploits MS Exchange Server vulnerabilities

"We are looking at yet another rapidly compiled, opportunistic and possibly experimental attack."More

Auth0 launches new feature for business customer identities

"We are thrilled to launch Auth0 Organizations as our next-generation offering for easy onboarding, authentication, and administration of business customers.”More

A guide to combating Active Directory misconfigurations

With so many attacks abusing misconfigurations in Active Directory, it’s time to fix it, writes Attivo Networks regional director for ANZ Jim Cook.More

Australians would rather quit than give up remote working, report finds

Building upon last year’s pre-pandemic inaugural Remote Work Report: The Future of Work is Remote, this year’s report is a comprehensive look at remote work.More

Remote work continues, and endpoint security cited as a must

Nearly half of workers will stay remote after the pandemic ends, and two out of three IT professionals are concerned with endpoint misuse, according to Prey Software's new study.More

Hackers hit Apple with ransomware, MacBook design files exposed

Hackers are attempting to extort Apple in exchange for not leaking stolen files.More