SecurityBrief Australia - Australia's leading source of security and threat news

Tesla's suit against ex-employee a strong case for IP security

“There was no need for this employee to be using their own iCloud for data storage even if the original intent was non-malicious."More

Yesterday

Quest QoreStor update extends native cloud storage support

QoreStor 6.0 introduces a new Performance Tier accelerating backup, providing up to 2x recovery point objectives (RPO).More

15 Jul

BlackBerry launches new threat hunting solution

CylanceGUARD is a subscription-based offering that validates, triages, analyses, prioritises, and automates analyst and incident engagement. More

15 Jul

Trend Micro delivers network security with AWS

Trend Micro Cloud Network Protection, available today, will be listed on AWS Marketplace.More

Overcoming deepfakes with deep learning

Why 5G and AI will determine cybersecurity strategy for the next decade

Whitepaper: Using syslog-ng to beat artificial ignorance

Cyber threats: Legacy systems aren't always the culprit

Enterprise at tipping point, says Symantec

Who is really responsible for cloud security?

Genetec announces new line of hybrid access control and intrusion hardware

Synergis IX provides a gateway to unified security, enabling customers to manage their security systems on a single interface.More

Experts discuss VMware Cloud on AWS use cases

Key issues were included ageing applications, the risk of moving inappropriate workloads to the cloud and the complexity of multi-cloud, hybrid cloud architectures.More

Whitepaper: Measuring SIEM’s ability to create actionable defence

Many organisations are struggling to keep pace with the speed in which hackers are attacking their system.More

One-size-fits-all not enough to secure IoT

"The growing trend for greater connectivity puts everyday objects at risk of exploitation."More

Whitepaper: Using logs to drive compliance

Log messages are filled with personal information that require proper security in order to comply with the Privacy Amendment Act 2017.More

Do we need cybersecurity training? Phishing remains problem area

“Implementing ongoing and effective security awareness training is a necessary foundational pillar when building a strong culture of security."More

Marriott, British Airways fines highlight critical need for security investment

The last week has brought heavy fines against the likes of global hotel chain Marriott and airline British Airways, casting a harsh spotlight on the price of cyber attacks.More

Application modernisation for the digital enterprise

The digital enterprise couldn’t exist without modern applications – otherwise it would be nothing more than a stale system that’s slow to react to the rapidly-changing conditions in today’s business environment.More

Amazon admits storing Alexa recordings until users take action

Amazon’s Alexa voice service is storing all user voice recordings and transcripts on its servers by default – and people who want to delete those recordings must do so manually.More

Huawei working to patch critical security vulnerabilities

Huawei is proactively working with Swascan researchers to fix the vulnerabilities, which could affect three main areas: confidentiality, integrity, and availability.More

Increasing talent shortage in A/NZ cybersecurity market

According to new research from Hays, technical expertise is simply not enough when hiring cybersecurity personnel and businesses should be looking to upskill employees.More

Report: Using UEBA to increase security analytics effectiveness

To facilitate more effective cybersecurity, businesses need to accommodate larger data sets with more advanced analysis of the data.More

Syslog-ng use cases and scenarios for Splunk

Using syslog-ng can improve the reliability log data collection from network devices.More

Kyckr signs agreement to expand into new platform

The agreement with Demyst will allow the Kyckr API to be accessible by existing and future Demyst API customers.More

DevOps: Communication falling short between security and developers

“Organisations implementing a DevOps structure are going in a strong direction, but security cannot be forgotten during this transition."More

The future of cybercrime in Australia – ESET

Cyber-attacks will continue so long as the target seems worthwhile and the attackers have funding to continue their work. More

Malware and malicious Office documents on the rise in 2019 - WatchGuard

Hackers are doubling down on well-known tactics like credential theft and ransomware by utilising fake Office documents and other attack avenues.More

10 times malware proved that MacOS isn't bulletproof

Mac users need to come to terms with the fact that their devices are not immune from attack.More

ESET's MSP program extends cloud business solutions

ESET specifically shaped the program so it’s easier for providers to work with a trusted industry leader and to reach a rapidly growing customer base.More

Protecting organisations from insider threats - Bitglass

The biggest challenge for most external threat actors is gaining access to a target organisation, but insider threats already have this. More

Financial institutions' websites most frequently attacked – report

Positive Technologies found that the majority of all web attacks in 2018 targeted sites of financial institutions, transportation companies, hospitality and entertainment companies.More

Thycotic introduces certification programme to A/NZ

The programme enables cybersecurity service companies to provide technical support and professional services using Thycotic PAM solutions. More

Whitepaper: A guide for a smooth journey to hybrid cloud

There is no doubt that a move to hybrid cloud is a massive mission but one that - if successful - promises a better world.More

Cybersecurity market increasingly competitive as public cloud segment grows

Cybersecurity solutions for public cloud and ‘as a service’ offerings are continuing to grow, however traditional hardware and software deployments still dominate the market.More

Why holding back from cloud adoption is holding your business up

The study surveys more than 950 IT decision-makers and IT pros from across the globe to better understand the barriers to increasing cloud usage.More

92% of businesses experience identity challenges - LastPass

Data from the report reveals IT professionals overwhelmingly (82%) agree that poor identity practices have exposed their business to risks.More

Using UEBA to fight user-based threats internally

This whitepaper uncovers how User and Entity Behaviour Analytics (UEBA) reduces your organisational risk and enables you to respond more quickly to attacks.More

Protecting remote staff from phishing attacks – WatchGuard

Close to 50% of Australian employees worked remotely for at least half the time, according to a 2018 survey by IWG. More

RSA responds to increasing A/NZ regulations with new updates

The new data protection and privacy management capabilities will help business in the A/NZ region to better ensure data protection and privacy regulations and compliance, according to the company.More

Global banks fail to keep up with application security

One bank had an unpatched vulnerability that has existed since at least 2011.More

Eaton brings first lithium-ion UPS to A/NZ

Designed for distributed IT and edge computing, the UPS offers increased network security and battery life, and remote management capabilities.More

HCL Technologies closes acquisition of IBM products

Company launches HCL Software business unit to operate the enterprise software offerings.More

Kroll expands into Australia with Enex Carbon acquisition

The Enex Carbon team will join Kroll’s Cyber Risk practice and will be led by managing director and Asia Pacific leader Paul Jackson.More

Frost & Sullivan: How SIEM is either an enabler or a retardant

Addressing a constant flow of security alerts is an inevitable consequence of the digital age.More

Docker users, here’s how you can integrate syslog-ng in your workflow

Containerization, and Docker in particular, changed the way organisations distribute and run applications.More

Case study: How Central Innovation prototyped the Nura headphones with SOLIDWORKS

Sound pioneer Nura had an ambitious concept to deliver when it raised almost two million dollars via crowdsourcing and then over five million dollars through a seed round.More

Financial organisations plagued by spear phishing attacks

Finance department employees are most heavily targeted by these attacks, because they are most likely to deal with banks and other financial institutions.More

Log classification doesn’t have to be mundane and repetitive – here’s how

It’s not hard to say ‘I don’t envy you’ to system administrators who are lumped with the burden of classifying log messages every time somebody conducts an action on the network.More

Insider threats & breach reports: Why security needs more investment

Insider threats (those that come from within your organisation) are a serious concern - here's why.More

How to navigate the innovation versus security dilemma

Australian organisations place the highest importance on improving employee productivity and enhancing business resilience.More

Whitepaper: Why accurate log processing is key to effective SIEM

SIEMs form the core of many enterprises’ IT security strategies, but they can be expensive to deploy and maintain.More

Responsible AI starts with responsible leaders - PwC

Responsible practices in artificial intelligence (AI) starts with how each individual organisation plans to strategise, design, develop, and deploy the technology. More

One Identity solution achieves new SAP certification

Customers can benefit from improved interoperability with SAP applications and with the large ecosystem of solutions that run on SAP NetWeaver. More

Leveraging Elasticsearch and syslog-ng to maximise log management

Syslog-ng is a single, high-performance log collector for device, system, and application logs, greatly simplifying logging architecture.More

Probax launches Dropbox backup solution for MSPs

The solution gives businesses a backup of their Dropbox data and extends the retention of data beyond the native data recovery limits of Dropbox.More