Had the incredible opportunity to speak at AWS Summit Sydney on a topic I’m deeply passionate about: “Building Cloud Security Programs That Can Actually Shift Left.” Chatted with Matt sharing the experience I had with building cloud security programs, the challenges,...
https://invariantlabs.ai/blog/mcp-github-vulnerability Cybersecurity researchers at Invariant Labs have discovered a critical vulnerability in the widely-used GitHub Model Context Protocol (MCP) integration that could allow attackers to steal sensitive data from...
Multi-stage operation impersonates Rothschild & Co recruiters to deploy remote access software across six regions https://www.trellix.com/en-in/blogs/research/a-flyby-on-the-cfos-inbox-spear-phishing-campaign-targeting-financial-executives-with-netbird-deployment...
Businesses with annual turnover above $3 million must now report ransom payments within 72 hours or face civil penalties https://www.legislation.gov.au/F2025L00278/asmade/text Australia has officially launched its mandatory ransomware payment disclosure requirements,...
https://www.apple.com/newsroom/2025/05/the-app-store-prevented-more-than-9-billion-usd-in-fraudulent-transactions Apple has revealed the staggering scale of its ongoing battle against App Store fraud, announcing that it prevented over $9 billion in fraudulent...
https://www.cyber.gov.au/about-us/view-all-content/alerts-and-advisories/russian-gru-targeting-western-logistics-entities-and-technology-companies The Australian Cyber Security Centre has issued a critical alert warning that Russian military intelligence operatives...
https://www.trendmicro.com/en_us/research/25/e/tiktok-videos-infostealers.html Cybercriminals have expanded their reach by weaponising TikTok videos to distribute dangerous infostealer malware through a sophisticated campaign known as ClickFix, marking a concerning...
In this article we’ll be talking about cloud security awareness and exploring why traditional security thinking falls apart in the cloud, and how to build a new security mindset for the cloud era. THE CLOUD SECURITY MINDSET First, let’s understand why...
https://socket.dev/blog/60-malicious-npm-packages-leak-network-and-host-data A significant supply chain attack targeting JavaScript developers has been uncovered on the NPM package repository, with dozens of malicious packages designed to collect sensitive host and...
https://www.bleepingcomputer.com/news/security/printer-maker-procolored-offered-malware-laced-drivers-for-months In a significant security incident affecting potentially thousands of customers, printer manufacturer ProColored has been distributing malware-infected...
