CEO frauds, in which cyber criminals impersonate chief executive officers of organisations and lure unsuspecting victims into authorising fraudulent transactions are not new, but they have become more prevalent and more sophisticated. With more women taking up CEO roles in organisations, we need to be conscious of how we [...]

Do you remember learning about the lifecycle of a butterfly? A tiny egg turns into a caterpillar that encases itself in a cocoon of silk from which, after a time, a beautiful butterfly emerges. Security processes can be thought of as cycles of continuous improvement that must occur within [...]

Cryptography is the aspect of cybersecurity about which I am most knowledgeable. And (I may be biased) it’s the core of cybersecurity. Sharing is caring, so I would like to give you some information about cryptography, especially about recent trends, and where they are heading. Cryptography uses mathematics to [...]

THOU SHALT UNDERSTAND YOUR ROLE IN CYBERSECURITY Let us start with the stats and nothing but the stats. In a recent report from Stanford University, 88% of data breaches are caused by human error. In the same report, “One third of respondents (33%) told us they rarely or never [...]

Industrial control systems (ICS) are critical for the delivery of power, water, transport and other essential products and services. This makes them a favoured target for cyber criminals motivated by financial gain or ideology. Attacks can also come from market competitors or employees with malicious intent. Compromise of an [...]

On the 2nd of March, news broke revealing that multiple zero-day Microsoft Exchange vulnerabilities had been exploited. AusCERT quickly communicated this news to its members by retweeting the active exploitation advisory from Volexity, a security firm based in Reston, Virginia USA. This was quickly followed by a security bulletin [...]