Spotlight on cyber security Spotlight on cyber security

Has cyber security in its current form failed? Most information security leaders agree that traditional methods, on their own, aren’t working in the face of the increasing number and severity of threats.

So what are the new and likely future threats? How can cyber security be fixed? Is your infosec team suffering from breach fatigue and, if so, what tools can you put in place to help them?

iTnews will provide some answers to these questions in our Spotlight on cyber security, coinciding with the Australian Information Security Association’s national conference on 18-20 October.

This Spotlight is supported by RSA.

Malware floods npm and PyPi registries in supply-chain attacks

Malware floods npm and PyPi registries in supply-chain attacks

Over 200 packages try to drop cryptominers.
Juha Saarinen Aug 22 2022 5:06AM Security
Apple drops iOS and iPadOS 15.6.1 to fix two exploited zero days

Apple drops iOS and iPadOS 15.6.1 to fix two exploited zero days

Kernel and WebKit bugs abused.
Juha Saarinen Aug 18 2022 6:33AM Security
Twilio phish sees Signal users' numbers at risk of re-registering

Twilio phish sees Signal users' numbers at risk of re-registering

Locally stored user information can't be compromised, company says.
Juha Saarinen Aug 16 2022 6:35AM Security
ACCC greenlights Google's buy of Mandiant

ACCC greenlights Google's buy of Mandiant

Finds no competition risk.
Juha Saarinen Aug 11 2022 12:30PM Security
Patch Wednesday fixes two-year-old Dogwalk vulnerability

Patch Wednesday fixes two-year-old Dogwalk vulnerability

Path traversal bug in diagnostics tool could be used for remote code execution.
Juha Saarinen Aug 10 2022 6:40AM Security
Twilio phishers went after Cloudflare, but failed

Twilio phishers went after Cloudflare, but failed

Most organisations would probably be breached in sophisticated attack.
Juha Saarinen Aug 10 2022 6:33AM Security
Twilio hacked in phishing attack

Twilio hacked in phishing attack

Customer data taken.
Juha Saarinen Aug 9 2022 8:34AM Security
Twitter says zero-day bug leaked account data

Twitter says zero-day bug leaked account data

User enumeration bug created in July 2021, plugged in January 2022.
Richard Chirgwin Aug 8 2022 12:03PM Security
Android apps are invasive and unsafe: study

Android apps are invasive and unsafe: study

WebView plus JavaScript bypass user permissions.
Richard Chirgwin Aug 5 2022 1:02PM Security
Patches out for serious vulnerabilities in several VMware products

Patches out for serious vulnerabilities in several VMware products

Authentication bypass and remote code execution bugs fixed.
Juha Saarinen Aug 3 2022 6:30AM Security
Web3 solves global storage dilemma: Filecoin and Holon

Web3 solves global storage dilemma: Filecoin and Holon

ESG and security in the metaverse.
Velvet-Belle Templeman Jul 26 2022 12:04PM Emerging Tech
Mastercard's digital ID service accredited by government

Mastercard's digital ID service accredited by government

Adds two more TDIF accreditations.
Justin Hendry Jul 26 2022 12:01AM Financial Services
Bunnings, Kmart hit pause on in-store facial recognition

Bunnings, Kmart hit pause on in-store facial recognition

Amid privacy watchdog investigation.
Justin Hendry Jul 25 2022 3:03PM Security
Patch out for critical SQLi bug in SonicWall management products

Patch out for critical SQLi bug in SonicWall management products

Rated as 9.4 out of 10 on CVSS.
Juha Saarinen Jul 25 2022 12:10PM Security
Uber admits covering up 2016 hacking, avoids prosecution

Uber admits covering up 2016 hacking, avoids prosecution

In US settlement.
Jonathan Stempel Jul 25 2022 6:26AM Security
T-Mobile to pay US$350 million in settlement over massive hack

T-Mobile to pay US$350 million in settlement over massive hack

Will also upgrade data security.
Jonathan Stempel and Sara Merken Jul 25 2022 6:26AM Security
Cisco data centre management software needs vulnerabilities patched

Cisco data centre management software needs vulnerabilities patched

Security review turns up a variety of attack vectors.
Richard Chirgwin Jul 22 2022 12:36PM Security
ACCC, ASIC trials website takedowns for phishing, crypto scams

ACCC, ASIC trials website takedowns for phishing, crypto scams

Dozens of sites removed in first three weeks.
Justin Hendry Jul 20 2022 11:48AM Security
Romanian man extradited to US over 2007 virus that hit NASA

Romanian man extradited to US over 2007 virus that hit NASA

Prosecutors allege Mihai Paunescu ran hosting service that distributed Gozi.
Staff Writer Jul 20 2022 11:45AM Security
Log4j vulnerabilities remain 'endemic', says US DHS

Log4j vulnerabilities remain 'endemic', says US DHS

Will endure for years.
Richard Chirgwin Jul 18 2022 12:23PM Security

Log In

  |  Forgot your password?