News

WASHINGTON: Homeland Security’s Cybersecurity and Infrastructure Security Agency issued an emergency directive last night requiring the Pentagon and all other executive branch agencies to fix a Microsoft Windows vulnerability that could allow attackers to gain control of entire networks. The vulnerability, formally called CVE-2021-34527 and dubbed PrintNightmare by security researchers, affects a Microsoft Windows service…

Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Fraud Risk Management Experts Dispute Findings of Report by International Institute for Strategic Studies Rashmi Ramesh • July 14, 2021     Some security experts are questioning the findings of a recent report by the International Institute for Strategic Studies, a London-based think tank, that…

Microsoft rolled out Patch Tuesday updates for the month of July with fixes for a total of 117 security vulnerabilities, including nine zero-day flaws, of which four are said to be under active attacks in the wild, potentially enabling an adversary to take control of affected systems. Of the 117 issues, 13 are rated Critical,…

Less than 8 per cent of Transport for NSW staff and 5 per cent of Sydney Trains staff had completed a cyber security training course as of January 2021. However, TfNSW has advised that it will implement mandatory annual training from July 2021 for all staff. Transport for NSW in February confirmed it had lost…

Cybersecurity agencies in Australia and the U.S. are warning of an actively exploited vulnerability impacting ForgeRock’s OpenAM access management solution that could be leveraged to execute arbitrary code on an affected system remotely.“The [Australian Cyber Security Centre] has observed actors exploiting this vulnerability to compromise multiple hosts and deploy additional malware and tools,”

Microsoft has confirmed it’s buying RiskIQ, a San Francisco-based cybersecurity company that provides threat intelligence and cloud-based software as a service for organizations. Terms of the deal, which will see RiskIQ’s threat intelligence services integrated into Microsoft’s flagship security offerings, were not disclosed, although Bloomberg previously reported that Microsoft will pay more than $500 million…

Washington: Websites run by the ransomware gang REvil suddenly became unreachable on Tuesday (Wednesday AEST), sparking widespread speculation that the group had been knocked offline. The Russia-linked cybercrime ring has collected tens of millions of dollars in ransom payments in return for restoring computer systems it has hacked. In recent weeks it claimed responsibility for…