Nov 23, 2022 | Podcast
Early this week, the site on the dark web that were used to post the Medibank breaches has mysteriously disappeared. The hackers had so far made 5 sets of data releases, exposing 2700 customer records. With the site going offline, it has disrupted the release and...
Nov 22, 2022 | Podcast
When an organisation suffers a data breach, should they pay the ransom demands? This has been a hot topic in recent weeks with the Medibank breach. That breach affected 9.7 million customers and is the worst hack in Australian corporate history. The company had...
Nov 21, 2022 | Podcast
In what is the worst hack in Australia corporate history, Medibank hackers release 1500 more sensitive records. The records are understood to be related to a range of diseases, including HIV, hepatitis and mental illness. This is on top of the more than 1200 records...
Nov 18, 2022 | Podcast
https://www.theregister.com/2022/11/16/wasp_python_malware_checkmarx/ I chatted about this with my talk’s moderator, Cameron, at last week’s AllDayDevOps’ Keynote. We spoke about how we’re seeing open source software supply chain attacks...
Nov 17, 2022 | Podcast
Since Twitter’s recent acquisition, many users have been looking for a Twitter replacement. This has resulted in a growing popularity in the decentralised micro-blogging platform Mastodon. With its increase popularity, it is also getting more scrutiny. Port...
Nov 16, 2022 | Podcast
https://www.darkreading.com/threat-intelligence/cookies-mfa-bypass-cyberattackers It’s articles like these that reminds me that we need to take a holistic approach to security as attackers only need to find ONE way to compromise your account.Researchers at this...
Nov 16, 2022 | Podcast
There’s been another cyber breach in Australia. This one affecting legal Aid ACT. Private information of socially and economically disadvantaged Australians would be publicly released following the company’s refusal to pay the ransomware demands. Many...
Nov 16, 2022 | Podcast
Android device owners beware. There is a malicious app from the Google Play store that may be assessing your personal banking information. The app is the “Todo: Day Manager” and has over 1,000 downloads. The app is designed to hijack your login info from...
Nov 15, 2022 | Podcast
Website owners and admins beware! There is an active extortion scam going around. The scam is claiming to have hacked your website servers and they are demanding $2,500 to not leak the data. The scam is widespread and appears to be non-targeted. One of our podcast...
Nov 14, 2022 | Podcast
GitHub is launching a new channel for security researchers to disclose vulnerabilities in open source software. Vulnerability reporting is a complicated process as there are no clear instructions on how to contact the open source project maintainers. This results in...
