CERT / Computer Emergency Response Team stories

Group-IB warns of rising Android Trojan threat in APAC
Mon, 16th Oct 2023
#
endpoint protection
#
cyber threats
#
android
Group-IB warns of rising cyber threats in Asia-Pacific, with advanced Android Trojan GoldDigger targeting Vietnamese banking apps.

New Zealand takes major step in cybersecurity with integrated agency formation
Thu, 31st Aug 2023
#
government
#
ncsc
#
cert
New Zealand's CERT NZ and NCSC have joined forces to create a lead operational cyber security agency, similar to those in Australia, the UK, and Canada.

Claroty uncovers vulnerabilities in Akuvox intercom system
Wed, 15th Mar 2023
#
data protection
#
cybersecurity
#
iot
Claroty has uncovered 13 vulnerabilities in the Akuvox E11 smart intercom system, making the camera and microphone vulnerable and compromising video and images.

Establishment of ASEAN Regional Computer Emergency Response Team
Fri, 21st Oct 2022
#
cybersecurity
#
cert
#
cii
Feasibility Study on the Establishment of an ASEAN Regional CERT as a key initiative in strengthening ASEAN cybersecurity.

NZ’s Cyber Resilience Framework to be evolving and potentially automated
Wed, 17th Aug 2022
#
strategy
#
cyber resilience
#
framework
The government's already putting $2.4 million into the Cyber Resilience Framework in its initial stages, what is it and why is it important?.

CERT NZ helps open source community with upgrade of Samba
Wed, 27th Jul 2022
#
cybersecurity
#
open source
#
catalyst
A collaboration between CERT NZ, Catalyst and the open source community has created a major update for Samba, making it more secure.

Could New Zealanders initiate a cyber attack from within?
Fri, 27th May 2022
#
cybersecurity
#
advanced persistent threat protection
#
cyber attacks
The threat landscape is significantly increasing worldwide, and the opportunities it presents are a growing concern in Aotearoa.

CERT NZ releases first Cyber Security Insights for 2022
Wed, 25th May 2022
#
ransomware
#
cybersecurity
#
malware
CERT NZ has released Quarter One: Cyber Security Insights 2022, which offers an overview of reports about cybersecurity incidents affecting New Zealanders.

NCSC advisory highlights poor security configurations
Wed, 18th May 2022
#
cybersecurity
#
gcsb
#
cyber attacks
The GCSB's National Cyber Security Centre (NCSC) has released a cyber security advisory identifying commonly exploited controls and practices.

How prepared is Aotearoa for a major cybersecurity breach?
Fri, 1st Apr 2022
#
breach prevention
#
cybersecurity
#
ncsc
Because of the digital world we now live in, the risk of cyber attacks means that geography is no longer enough to distance ourselves from tensions overseas.

COVID-19 and cybersecurity: Technology and risk in Aotearoa
Fri, 25th Mar 2022
#
phishing
#
cybersecurity
#
email security
Scammers are using COVID-19 to exploit New Zealanders' personal information and financial details, warns cybersecurity agency Netsafe.

How safe is New Zealand’s disabled community online?
Tue, 22nd Mar 2022
#
dei
#
cybersecurity
#
netsafe
New Zealand invests over $75m in cybersecurity for health system amid growing cyber threats and questions arise over online safety for disabled individuals.

Log4j actively exploited, serious complications can occur according to CERT NZ
Mon, 13th Dec 2021
#
cybersecurity
#
breach prevention
#
java
The widely-used java logging library, log4j, has been actively exploited, according to an update from CERT NZ and Catalyst.

Flubot malware, botnets, phishing round out top security issues plaguing Kiwis in Q3
Wed, 8th Dec 2021
#
ddos
#
malware
#
phishing
Malware and scams continue to plague thousands of New Zealanders, laying $3.3 million to waste in just three months.

Cybersecurity experts urge caution as phishing attacks surge
Wed, 24th Nov 2021
#
phishing
#
email security
#
online shopping
Kiwi shoppers warned of rising online scams ahead of festive sales.

It's Fraud Awareness Week: How you can steer clear of scams and fraud
Fri, 19th Nov 2021
#
cybersecurity
#
mbie
#
netsafe
Netsafe reports 86% rise in identity fraud and 37% increase in investment fraud in New Zealand, sparking concern over online safety.

What is NZ’s Cyber Security Emergency Response Plan?
Wed, 3rd Nov 2021
#
cybersecurity
#
ncsc
#
pijf
The Cyber Security Emergency Response Plan (CSERP) is the framework that the government will use in the event of a cyber-emergency.

Cyber Smart Week takes cybersecurity back to basics
Thu, 21st Oct 2021
#
biometrics
#
cybersecurity
#
ccl
Cyber Smart Week, led by CERT NZ, aims to improve cybersecurity and raise awareness of cyber threats in New Zealand.

The who’s who of NZ’s government & public cybersecurity agencies
Thu, 30th Sep 2021
#
cybersecurity
#
gcsb
#
netsafe
NZ champions cyber defence amid rising tech innovation.

Ransomware, crypto scams & brute-forced passwords: Highlights from CERT NZ's Q2 report
Fri, 17th Sep 2021
#
malware
#
ransomware
#
cryptocurrency
The number of cybersecurity incidents in the second quarter of 2021 has risen to more than 1,350, accounting for $3.9 million in direct financial losses.

Only half of IT security teams optimally prepared for a security incident
Thu, 19th Aug 2021
#
cybersecurity
#
it professionals
#
cert
Only 56% of companies are optimally prepared for a security incident, according to a global study by OTRS Group. (1).

CERT NZ urges businesses to disable Remote Desktop Protocol due to cyber risks
Mon, 2nd Aug 2021
#
malware
#
contact centre
#
ransomware
According to CERT NZ, most ransomware attacks can be traced back, in part, to poorly configured remote access systems.

No more 'pawswords': Why pet names shouldn't unlock your online accounts
Fri, 16th Apr 2021
#
cloud services
#
hyperscale
#
public cloud
15% of Britons use their pet's name as a password, making them easy targets for cybercriminals, warns UK's National Cyber Security Centre.

Security alert: Widespread exploitation on Microsoft Exchange
Wed, 10th Mar 2021
#
microsoft
#
cybersecurity
#
cert
According to an advisory from CERT NZ, widespread exploitation activity has already occurred as a result of the vulnerabilities within the Microsoft Exchange.