Dec 21, 2018 - Microsoft has released a security update for Internet Explorer after receiving a report from Google about a new vulnerability that is being used in targeted attacks. Security vulnerabilities in applications can be used to execute malicious code on your systems, and using the latest version of applications is one way that you can better protect yourself, as we explain in the Essential Eight.
Dec 21, 2018 - The Australian Cyber Security Centre (ACSC) is providing assistance to ICT managed service providers (MSPs) in the wake of the global cyber security compromise confirmed by the Australian Government. Alastair MacGibbon, Head of the ACSC and National Cyber Security Adviser, says the incident has affected ICT providers and their customers across the globe, and it demonstrates there is no room for complacency in boardrooms around Australia when it comes to ensuring organisations have better cyber security protections in place.
Dec 14, 2018 - Up to 6.8 million people who uploaded their photos to Facebook may have shared more than they intended to because of an application program interface (API) bug. 'Currently, we believe this may have affected up to 6.8 million users and up to 1,500 apps built by 876 developers,' Facebook said in a statement. Facebook said the bug gave third-party app developers too much access to people's uploaded photos between 13-25 September 2018.
Dec 14, 2018 - The Australian Cyber Security Centre (ACSC) is aware of bomb threat emails being received by Australians. The emails claim an explosive device has been hidden in the recipient’s premises, and will be detonated unless a ransom is paid in bitcoin. If you receive this email:
Dec 13, 2018 - The Australian Cyber Security Centre (ACSC) has added Google Cloud Platform to the Certified Cloud Services List (CCSL) for unclassified workloads, increasing the options available to Australian Government agencies. Google Cloud Platform joins 12 existing providers in the CCSL that meet stringent Australian Government security requirements for managing information storage at the minimum Australian Government security standard, known as ‘Unclassified’.
Dec 12, 2018 - Australia’s Cyber Incident Management Arrangements (CIMA) outlines the inter-jurisdictional coordination arrangements and principles for Australian governments’ cooperation in response to national cyber incidents. The CIMA bridges the current gap between a localised cyber security incident handled by an individual state, and Australia’s national crisis management arrangements. If a national cyber incident reaches a crisis level, the CIMA will operate in support of jurisdictions’ respective crisis management arrangements.
Dec 6, 2018 - Adobe has released security updates for its widely used Flash Player app to help users defend themselves against the latest malware. Users who fail to update their Flash Player app could be vulnerable to cyber criminals, who could use it as an opportunity to access data, programs, individual computers or networks.
Dec 4, 2018 - The updated Australian Government Information Security Manual (ISM) has been released by the Australian Cyber Security Centre (ACSC). The 2018 release supports a move towards a risk-based approach that gives organisations greater flexibility to manage their cyber security based on their own unique circumstances, enabling greater innovation within Government.
Dec 4, 2018 - Australia's best young cyber stars have been recognised in the Cyber Security Challenge Australia (CySCA), the nation's flagship hacking competition for tertiary students. The Australian Signals Directorate (ASD) and industry partners run the challenge to address the critical cyber security skills shortage by encouraging young Australians to pursue a career in the field. The latest research reveals the domestic cyber security industry must employ over 45,000 additional workers over the next decade to build a cyber security sector that advances Australia’s cyber resilience.
Dec 1, 2018 - The Marriott Group have released a statement regarding a significant data security incident involving their Starwood Guest Reservation database. An investigation undertaken by Marriott in September 2018 determined that there had been unauthorised access to the database, which contained guest information relating to reservations at Starwood properties since 2014.