Information security news stories

Open source
Free security training from the Open source Security Foundation
A free training course on developing secure software from the Open source Security Foundation is now available.

Phishing
Not having phishing resistant MFA will come at a cost for the finance industry
With the volume of money handled by the finance industry on any given day, it's no wonder that it is a prime target for cybercriminals.

Phishing
Cyber attacks rise 2,650% from January to December
Detected and blocked spam accounted for the majority of the attacks, with a 2,775% increase between January and December.

Cloud
Forbury achieves ISO/IEC 27001 information security certification
Forbury, a commercial real estate valuation software company, has achieved ISO/IEC 27001:2013 certification.

Phishing
DHL tops list of companies most impersonated by criminals
Cybercriminals often impersonate brands to gain valuable data, and new research by Check Point Software has found DHL to be the brand most frequently imitated by cybercriminals.

Cloud
Zoom awarded new international security certification after intensive evaluation
Communication tool Zoom has been announced as the first video communication client to be awarded Common Criteria Evaluation Assurance Level 2 (v3.1 rev. 5), issued by the German Federal Office for Information Security.

Cybersecurity
NZ information security award finalists revealed
The 2021 iSANZ Awards have been announced with cybersecurity businesses, a big bank and experts from across the public and private sectors among the 18 finalists.

Cybersecurity
Why strengthening information security is essential for every successful cloud service provider
Through increased visibility into potential information security risks, ISO/IEC 27001 helps to protect your business, your reputation and adds value.

Remote Working
Citrix Workspace given highest level IRAP assessment
After an intensive assessment from an Australian Signals Directorate auditor, Citrix Workspace has been assessed at the Protected level.

Commerce Commission
ComCom takes responsibility for external provider breach
In 2019, thieves stole computers from a third party supplier. ComCom admits it was also at fault.

Remote Working
Gartner: Spending on information security and risk management to continue to grow in 2020
The coronavirus pandemic is driving short-term demand in areas such as cloud adoption, remote worker technologies and cost saving measures.

Cybersecurity
Aura InfoSec grows Wellington team
Aura Information Security has selected Christo Gouws as its new senior security consultant.

Artificial Intelligence
BlackBerry Cylance to receive IRAP certification
Company becomes first endpoint security provider to complete assessment to deliver native AI security to Australian federal agencies.

Network Security
Aerohive achieves ISO/IEC 27001 cloud platform certification
Aerohive is the first cloud-managed networking vendor recognized by a global standard for commitment to information security management systems.

Cybersecurity
CERT NZ issues critical security controls for 2019
The annual list is designed to help businesses prioritise their security controls based on CERT NZ’s local and international threat intelligence.

Data breach
Report on SingHealth breach condemns poor security practices
The 2018 Singapore SingHealth data breach was poorly managed and riddled with vulnerabilities from the start.

Physical Security
Mega-merger aligns physical & digital security across A/NZ
Optic Security Group is the name of one of A/NZ’s latest mega-mergers in the physical and digital security space, bringing combined revenues in excess of A$100 million to the table.

Firewall
NZ Internet Task Force joins iSANZ Hall of Fame
NZITF chair Barry Brailey and former chairs Mike Seddon and Paul McKitrick received the award in Auckland last week.

Gartner
A/NZ infosec spending approaches double-digit growth
Gartner has released a new forecast of Australia and New Zealand’s information security spending power between 2018 and 2019.

Public Sector
WA Govt invests $500k into dedicated cybersecurity team for public sector
"The McGowan Government is committed to developing and strengthening the resilience of public sector services and information from cyber attack."

.nz
Domain Name Commission & CERT NZ to share information about .nz cyber threats
The two agencies have agreed to share certain domain registration information so that they can ‘enhance’ cybersecurity in New Zealand.

Hackers
Why is Hivint funding an Australian white hat hacking group? To grow the infosec community, of course
This homegrown Australian cybersecurity consulting firm is backing HHH to the tune of $15,000 – all to improve the infosec community.

Service management
ITIL: is it all that?
TIL is sometimes perceived and promoted in the context of risk and compliance, so let us consider where ITIL fits.