SecurityBrief Australia - Australia's leading source of security and threat news

ThreatQuotient launches automation capability for detection and response

"The focus of ThreatQ TDR Orchestrator is data, not process. In detection and response, what is learned when performing an action is far more important than the action itself."More

07 May

Ransomware recovery costs increase as businesses are hit hard

Average ransomware recovery cost in Asia Pacific and Japan (APJ) has increased from US$1.16 million to US$2.34 million, more than doubling in one year.More

07 May

Imperva advances API security solution with CloudVector acquisition

"Combined with an expanding surface area and novel exploits, all organisations need stronger API visibility and advanced protection."More

06 May

SolarWinds adds three executives to its C-suite team

The company says the new appointments will bolster the company’s customer experience, security and product innovations.More

Messaging app used to control and distribute malwareMore

Greater demand for modern data protection, disaster recovery as COVID sees increase in attacksMore

Fortinet looks to reduces cyber skills gap with Training Advancement AgendaMore

Targeted ransomware attacks on the rise, Kaspersky findsMore

Phishing, monetary gain and supply chain attacks characterise cybercrimeMore

Uptick in cloud-based identity and access management in enterprises - surveyMore

eCommerce losses to online payment fraud to exceed $20 billion in 2021

The use of artificial intelligence will enable behavioural biometrics in this area, which will increase security across all potential fraud channels.More

Protecting endpoints (and users) that have left the office

To access work emails, it may suffice to use with multi-factor authentication. But if users want to access customer data, that security control isn’t enough.More

6clicks partners with Microsoft to bring greater security to Aus Government

Initially, the new offering will support the information security needs of Australian government departments and agencies as they seek to improve their risk and compliance maturity.More

Kaspersky launches new course to defend users against doxing

"Knowing the threats that are out there makes it easier to take measures to avoid them, and one such threat is doxing - the act of gathering and revealing identifying information about someone online against their will."More

A look at the MS Exchange zero-days and how to protect your business

Every organisationusing Microsoft Exchange must patch their on-premise servers immediately and scan their networks for signs of malicious activity.More

Attivo Networks announces SentinelOne integration to increase threat protection

The integrated solution creates a defence against sophisticated attackers and provides comprehensive coverage across a broad set of attack techniques, as documented in the MITRE ATT&CK matrix.More

The challenge of ensuring effective protection against DNS attacks

The ways in which bad actors can use DNS to mount attacks are numerous. Here are some of the most popular ones.More

Ransomware recovery costs more than doubled in past year

"The findings confirm the brutal truth that when it comes to ransomware, it doesn't pay to pay."More

Threat notification isn’t the solution – it’s a starting point

With Sophos MTR, organisations are backed by a team of threat hunters who take targeted actions to neutralise even the most sophisticated threats.More

New onboarding standard to secure Internet of Things launched

A new onboarding standard to secure Internet of Things has been created by the FIDO Alliance. More

Dell Technologies partners with SecureWorks for new security service

The new Dell Technologies Managed Detection and Response powered by Secureworks TaegisXDR provides 24/7 security across endpoint devices, data centre networks and cloud environments.More

CISOs facing rising security debts

Chief information security officers are facing a rising security debt to secure their organisations against an increasing volume of attacks by well-armed criminals. More

CrowdStrike launches integrations to advance NDR for enterprise

"This integration with NDR partners provides mutual customers a comprehensive, holistic cybersecurity solution with enhanced visibility, streamlined detection and response and frictionless automation."More

Trend Micro launches cloud security platform on AWS Marketplace

Organisations that build on AWS are now able to leverage Trend Micro Cloud One to protect their cloud-based environments.More

Fortinet: Reduce risk with consistent security

Cornelius Mare, Fortinet A/NZ Director, Security Solutions, explains how consistent security can reduce risk whilst streamlining NOC/SOC operations and minimising costs.More

Palo Alto Networks establishes cybersecurity consulting group Unit 42

The group will help enterprises respond to emerging threats as they navigate an increase in costly, crippling cyberattacks.More

Vectra AI releases new endpoint integration to Cognito platform

Cloud network detection and response company Vectra AI has released extended endpoint detection and response native integration into its Cognito platform.More

Video: 10 Minute IT Jams - SonicWall manager dissects zero trust security

Today’s interviewee is SonicWall head of presales for APAC, Yuvraj Pradhan, who discusses various talking points surrounding zero trust security.More

Entrust launches PKI as-a-Service to better secure cloud apps

The next generation of its high-assurance PKI, Entrust PKIaaS, is designed to be secure, quick to deploy, scale on-demand, and run in the cloud.More

Australians would rather quit than give up remote working, report finds

Building upon last year’s pre-pandemic inaugural Remote Work Report: The Future of Work is Remote, this year’s report is a comprehensive look at remote work.More

Why Laminar Communications is all-a-chatter about messaging app LamChat

“We built our own messaging app to ensure it connects with our server. We used open-source code where possible and the programmers are people who live in Brisbane.”More

Cloud native computing adoption sees increase in security concerns

"We are at a pivot point in terms of the evolution of both the developers role as well as a transformation within the security industry as a whole."More

Quest Software launches solutions for operations, protection and governance

"We are excited about this new strategic direction and believe it will deliver strong value for our global customers as they further their data-centric transformation projects."More

Entrust acquires identity verification company WorldReach

Global security company Entrust has acquired WorldReach, enabling solutions for Digital Traveller and Citizen Identity experiences.More

Sharp increase in cyber attacks in last quarter of 2020 - report

There was an increase in the number of attacks aimed at the trade industry and medical institutions, as well in the number of social engineering attacks on individuals.More

Automotive Security Research Group selects ThreatQuotient

ThreatQuotient is throwing its weight behind the development of automotive cybersecurity, specifically threat intelligence sharing for automotive products.More

Avast identifies new cryptocurrency malware Hackboss

Researchers from Avast, the global digital security and privacy company, say they have identified new cryptocurrency-stealing malware.More

Organisations faced unprecedented ransomware risk in 2020

Enterprises faced unprecedented cybersecurity risk in 2020 from increasing attack volume, the pandemic-driven digital transformation of work, and generally deficient cyber preparedness and training.More

Why DevSecOps must strive for effective enforcement measures

Threats to applications go beyond exploiting code and logic vulnerabilities which are already more than enough to analyse and cope with.More

Fortinet releases 5G optimised solutions for networking and security

Tthe FortiGate 7121F delivers the security necessary for 5G networks and enterprise Zero Trust Access, while FortiExtender 511F-5G provides wireless WAN connectivity for SD-WAN and SASE solutions.More

COVID-19 has changed the way companies handle data security

According to data classification company Titus, the rise in remote working under COVID-19 has delivered far-reaching changes in how we do business, with significant implications for CISOs, compliance, and data governance officers. More

A guide to combating Active Directory misconfigurations

With so many attacks abusing misconfigurations in Active Directory, it’s time to fix it, writes Attivo Networks regional director for ANZ Jim Cook.More

Why the rise of containers has created a vulnerability crisis

A rise in the use of Kubernetes and Docker services — and increased adoption of DevOps methodologies — have all contributed to the rise in popularity of containers. But as with all emerging technologies, there are risks.More

Hackers hit Apple with ransomware, MacBook design files exposed

Hackers are attempting to extort Apple in exchange for not leaking stolen files.More

Interpol announces it will join the Coalition Against Stalkerware

The international criminal police organisation Interpol has announced that it will join forces with the Coalition Against Stalkerware, which cybersecurity company Malwarebytes is a part of.More

Working capital finance: what is it and how to apply

Working capital finance can help uncork the bottleneck many businesses face – inadequate cash flow – without causing headaches later down the line.More

New research reveals customer behaviour around fraud risks

"Timeliness is key, you must get the alert in front of people at the exact moment they are at risk of fraud. Without this, banks will continue to spend huge amounts of money on fraud prevention messaging that will never have an impact."More

'Catastrophic forgetting': What it is, and how to prevent it

AI has been used to combat cyber-threats for years. But there are many related pitfalls — and catastrophic forgetting is a major one.More

Massive WHO scam busted - 'DarkPath Scammers' group suspected

The scam campaign comprised a network of 134 websites that attempted to lure people in by asking them to take a survey for a monetary reward.More

How to mitigate business transformation risk

The coming years hold lots of fresh business opportunities for those positioned and ready to take advantage of them.More

Snowflake completes IRAP assessment, looks to enable Aus Govt

“The completion of the IRAP assessment now allows Snowflake to work with all Australian Government agencies since many departments require the protected status to have been reached."More

IoT connections to generate $16 billion in security revenue as new threat vectors arise

"There are limited IoT security solutions in the market, due in large part to the fragmented nature of the IoT itself."More

New research by Netacea into digital fingerprint and identity thief

Bot detection and mitigation company Netacea has published new research into the Genesis Market, an invite-only deep web marketplace that trades in digital fingerprints and enables buyers to impersonate victims online.More

Corporate security failing to keep pace in new COVID-19 world

Corporate security is failing to keep pace in the new normal of remote working in the wake of the COVID-19 pandemic, says Fujitsu. More

Auth0 launches new feature for business customer identities

"We are thrilled to launch Auth0 Organizations as our next-generation offering for easy onboarding, authentication, and administration of business customers.”More