Feb 3, 2023 | Podcast
The government of Western Australia recently announced that the number of reported scam losses hit a record high in 2022. There were around 1,203 people losing a total of around $16 million. This represented a 7% increase on 2021’s losses. Almost half of those...
Feb 2, 2023 | Podcast
With all the news about data breaches and account compromises, it is important to keep our online data safe by changing our passwords. February 1st is Change your password day and a day to remind ourselves to review our online security. The day was established back in...
Feb 1, 2023 | Podcast
Adware disguised as activity tracking apps and Phishing apps disguised as investment apps and games are gaining popularity on the Google Play store. The adware apps promote themselves as health, pedometer and good habit-building apps. They promise users random rewards...
Jan 31, 2023 | Podcast
Make sure upgrade to the latest version of GitHub before this Thursday, otherwise it will no longer function. GitHub said that unknown attackers had stolen encrypted code-signing certificates for its Desktop and Atom applications. While they have found no evidence...
Jan 30, 2023 | Podcast
If your company has a security champions program, it’s probably not doing too well. According to Sandesh of Boring AppSec, he claims that most security champions program do not take off, or if they do, taper off quickly. Building a security program is hard and...
Jan 27, 2023 | Podcast
The data trail you leave behind whenever you’re online is bigger, and more revealing, than you may think. It’s data privacy day this Saturday. Or if you’re based in Europe, then it would be data protection day for you. The day serves as a reminder of...
Jan 26, 2023 | Podcast
Cyber criminals have found a new way to send spam and phishing emails that allow them to bypass email scanners. They are using Google Ad invites for their email delivery. Administrator of Google Ads accounts can add new users to their account by sending out invites....
Jan 25, 2023 | Podcast
A popular wordpress learning management system, called LearnPress, was vulnerable to multiple critical severity vulnerabilities. This includes SQL injection and local file inclusion. The vulnerability was patched on December 20, 2022 with the release of version 4.2.0....
Jan 24, 2023 | Podcast
Researchers from Trend Micro recently demonstrate how GitHub Codespaces can easily be configured to act as a web server for distributing malware. Launched in November 2022, GitHub Codespaces allows developers to deploy cloud-hosted platforms in virtualised containers...
Jan 23, 2023 | Podcast
There’s been a rise of attackers using Microsoft OneNote attachments to spread malware and infect victim’s computers. Previously attackers would use Microsoft word and excel attachments for distributing their malware. Those attachments would contain macros...
