Each year kicks off with the release of trends and figures stating the increasing volume and sophistication of cyber-attacks. We’ve seen organised crime prosper through illegal offerings such as Ransomware as...
Starting from today, we will be sharing weekly posts wrapping up the cyber security stories that caught our eye from the past week. To kick it off, here is this...
The Data Breach Notification Bill could spell trouble for SMEs who aren't equipped to tackle the complexity of the legislation. Our COO Murray Goldschmidt discusses with The Australian....
Security is no longer just the IT department's problem. Hackers are now targeting finance teams, and for obvious reasons. Cyber-attacks are rife among Australian SMEs, which faced a blistering 200,000 ransomware attacks...
We spoke to CSO Online about our biggest cyber security predictions for 2018. Taking a more holistic approach to security efforts, going beyond penetration testing, and "shifting left" in the...
With mere weeks to go before the Notifiable Data Breaches Scheme is in action, organisations have to be equipped to respond to and report data breaches. Here is how to...
The Notifiable Data Breaches Scheme is fast approaching, and businesses who aren't informed can see themselves paying fines up to $1.8m. Here's what you need to know. What is it? The...
The Inteset Secure Lockdown desktop application allows the use of the deprecated SHA-1 hash function to store the Inteset administrator’s password in the Windows registry....
Current versions of the Microsoft Skype for Business (a.k.a Lync) product are vulnerable to content manipulation, multiple Cross-Site Scripting (XSS) injections and URL filter bypass vulnerabilities....
ClickSoftware ClickMobile is a mobile application which provides workforce management functionality to field engineers. ...
The ClickSchedule application and the backend web service have vertical and horizontal privilege escalation vulnerabilities which allow mobile users to impersonate other users by only knowing their username (without their...
An XML External Entity attack is an attack against an application that parses XML input. This attack occurs when XML input containing a reference to an external entity such as...
tcpdump is a common command line packet analyser. It allows the user to display TCP/IP and other packets being transmitted or received over a network to which the computer is attached....
Multiple cross-site scripting vulnerabilities were detected in the SAP NetWeaver Business Client for HTML 3.0. The NetWeaver Business Client for HTML 3.0 can be abused by an attacker, allowing them to...
Multiple vulnerabilities were detected in the SAP Work Manager 6.0, SAP Work Manager iOS Client and SAP CRM Service Manager. The security vulnerabilities can be used to enumerate remote application...
Multiple medium risk security vulnerabilities were detected in the Self Care portal of the Cisco Unified Communications Domain Manager (a.k.a. CUCDM or VOSS Solutions Domain Manager). The security vulnerabilities can be...
