blog

Retailers At Risk Of Class Actions For Data Breaches

Australia’s struggling retail sector can expect to be targeted by consumer class actions if they fail to protect their customer’s personal information. Looming regulation will require all businesses to report any data breach “that is likely to result” in serious harm to an individual. The growth in online shopping will make retailers and consumer brands…

Details
blog

Australia Finally Has Mandatory Data Breach Notification

Australia will have a mandatory data breach notification scheme in place within the year after several aborted attempts, following the passage of legislation through the senate today. The Labor and Liberal parties today united to pass the government’s Privacy Amendment (Notifiable Data Breaches) Bill 2016 into law. Learn what the rules mean for your organisation.…

Details
blog

Australia Likely to Get its Own GDPR

The mandatory data breach notifications laws coming into effect in Australia next year will be followed by other laws to ensure everyone in the digital ecosystem — including government divisions, large corporates, small to medium-size enterprises (SMEs), and consumers — are playing their role in keeping Australia “cyber secure”, according to Senator Bridget McKenzie. McKenzie,…

Details
blog

Common Criteria Certification

In recognition of their commitment to global standards for security excellence, Egress Software Technologies, a leading data security provider, today announces that Egress Switch Secure Email and File Transfer has been awarded Common Criteria Certification at Evaluation Assurance Level (EAL) 2. Common Criteria is an internationally recognized set of standards used by organizations around the…

Details
blog

Massive Spambot Captures 711 Million Email Addresses

A massive trove of email addresses used by spammers has been published online. It came to light after a French security researcher known as Benkow pointed the Australian operator of leaked credentials check site HaveIBeenPwned.com, Troy Hunt, to a server called Onliner Spambot. The server, hosted in the Netherlands, contained a vast amount of email…

Details
blog

New Trump Executive Order Would Move Federal Cybersecurity To The Cloud

President Donald Trump signed an executive order Thursday targeting the federal government’s notorious vulnerability to cyber threats, mandating one set of standards and making the heads of each government agency responsible for security. “The United States invented the internet and we need to better use it,” Tom Bossert, Trump’s homeland security adviser, said at a…

Details
blog

Why Company Leaders Everywhere Need To Worry About Cybersecurity

Navigating the Digital Age is a cybersecurity guide for company directors and decision makers. This introduction by Stephen Day highlights the importance of cybersecurity and why companies need to urgently think about putting preventative measures in place. Why should I care about cybersecurity? Chances are, while you read this brief article, there will have been…

Details
blog

Singtel Vendor Fined $10k For Data Breach

Singapore’s privacy watchdog has fined India-based Tech Mahindra $10,000 for failing to protect the personal details of 2.78 million Singtel customers from unauthorised changes, which inadvertently caused the personal data of one customer to be leaked online. The Personal Data Protection Commission (PDPC) started investigating Singtel and its technology vendor Tech Mahindra after customers reportedly…

Details
blog

One Step Closer To Australian Data Breach Class Actions

The Privacy Amendment (Notifiable Data Breaches) Act 2016 (Cth), which received assent on 22 February 2017, proposes a number of amendments to the Privacy Act 1988 (Cth) that could act as a trigger for Australian class actions in the data breach space. The proposed amendments, which are yet to be proclaimed, will require entities regulated…

Details

Life Support For Public Healthcare IT

With consumer trust shaken, Australia’s convalescing healthcare IT ecosystem needs a shot in the arm. A series of high-profile data breaches during 2016 exposed IT problems in Australian healthcare agencies, which joined peers around the world in being ravaged by human error and targeted by data-hungry hackers. As if that wasn’t enough, the Australian Taxation…

Details
blog

Overhaul Of ASD’s Top 4 Cyber Threat Strategies

The Australian Signals Directorate has undertaken a significant revamp of its top four strategies to mitigate targeted cyber intrusions, doubling the core security controls to eight and expanding its reach to cover a wider threat range than just “targeted” attacks. It’s the first overhaul to the highly-regarded controls – which are mandatory for all government…

Details
blog

Security Products Endanger Customers Through Poor TLS Interception

Introduce Logjam, POODLE, CRIME and other vulnerabilities. Popular security products such as anti-viruses and middleboxes put customers at risk through poor transport layer security (TLS) interception implementations, researchers have found. A group of researchers from United States universities as well as tech companies Google, Mozilla, and Cloudflare tested middleboxes – which act as network proxies…

Details