Sep 29, 2023 | Podcast
Attackers targeting software supply chains are impersonating GitHub Dependabot to sneak their malicious code changes past developers. Security researchers have discovered a campaign where attackers were attempting to sneak code into software projects by disguising...
Sep 28, 2023 | Podcast
Attackers have been running a campaign this month, using malicious open-source packages to steal sensitive data from software developers. The campaign commenced on September 12 2023 and started with 14 malicious packages on npm. There was a brief hiatus on September...
Sep 27, 2023 | Podcast
Your computer’s graphic card could be exposing sensitive data to malicious websites. Researchers have published a paper demonstrating how a malicious website can exploit a vulnerability in the GPU (Graphic Processing Unit) to perform a cross-origin attack and...
Sep 26, 2023 | Podcast
Phishing scams just got more sophisticated with scammers targeting hotel staff in order to phish their customers. Security researchers discovered a sophisticated credit card stealing campaign where the hackers first target hotel staff. They first make contact with the...
Sep 25, 2023 | Podcast
Beware of what you download! A malicious actor has attempted to disguise a malware as a proof of concept exploit for the recently released WinRAR vulnerability. WinRAR was recently discovered to suffer from an improper validation issue which can be exploited to...
Sep 22, 2023 | Podcast
Pizza Hut Australia notified 193,000 customers that the company had suffered a data breach. Pizza Hut Australia became aware of the cyber security incident earlier this month that an unauthorised third party had accessed its data. The company investigated and believes...
Sep 21, 2023 | Podcast
In an effort to reduce cyber-crime, the Australian Federal Government has introduced digital identity legislation to parliament. With the growing number of Australian data breaches in the last year, there has been a consensus by industry in favour of a government...
Sep 20, 2023 | Podcast
Microsoft’s AI Research Division has been leaking 38TB worth of sensitive data for over three years! Discovered by a security researcher, the leak started back in July 2020 and was due a Microsoft employee inadvertently sharing the URL for a misconfigured Azure...
Sep 19, 2023 | Podcast
As part of a co-ordinated national action plan, the Australian Government will release a revised cyber security strategy later this year around six cyber shields. It’s been almost a year since the Optus Breach, which at the time was the largest cyber security...
Sep 18, 2023 | Posts
The Auckland Transport authority in New Zealand has suffered a cyber security incident that is impacting a wide range of customer services. Auckland Transport is the transportation authority in the Auckland region. They look after transport infrastructure and are...
