The NSW Government released an update of its Cyber Security Strategy in May 2021. This new strategy encompasses focus areas for both the public and private sector, continuing to strengthen and improve on the NSW Government’s previous strategic planning.
A look at the NSW Government 2021 Cyber Security Strategy Read More »
For everyone who’s asking, what are the differences with a Red team, Blue and Purple, Black, White and Gold? Find out more here!
Red, Blue, Purple, White, Black & Gold Team Read More »
Adopting the NIS Directive formulated by the European Union appears to be an excellent decision by Australia to elevate the security level of critical infrastructure networks and information systems.
Network And Information Systems (NIS Directive) Impact On Australian Businesses Read More »
Check out our Senior Red Consultant’s talk at the recent CRESTCon Australia 2021, on the ‘The benefits of Infrastructure as Code for Adversary Simulation’.
The Benefits of Infrastructure as Code for Adversary Simulation Read More »
Australian Cyber Security Centre’s (ACSC) Strategy to Mitigate Cyber Security Incidents provides a prioritised list of mitigation strategies to assist organisations in protecting their systems and their crown jewels against a range of adversaries. The mitigation strategies advised by ACSC vary and can be customised based on the risk profile, the industry sector and the adversaries the organisation is most concerned with.
A Dummy’s Guide to ACSC E8 Assessment Approach Read More »
In a world full of costly data breaches and invasive privacy incidents, Singapore is not immune. It’s not just the big threats such as cyber criminals, nation-state hackers and cyber espionage—even simple employee mistakes can end up exposing private data and costing your organisation millions.To combat the growing wave of privacy and cybersecurity issues,
The Singapore Privacy Landscape Read More »
Not long ago, I assisted a client of ours with a penetration test of their VMware Horizon remote access solution and discovered a vulnerability affecting how it handles Multi-Factor Authentication (MFA). As a result, with a compromised user account password, I could gain access to the organisations internal network from the internet, bypassing the MFA
CVE-2020-3977: VMware Horizon DaaS Broken Authentication (MFA Bypass) Read More »
Written by Breton Chan, Privasec’s Marketing Executive
“Cyber security is a confluence between technology, process and people – with adequate and accurate education of an organisation’s people possibly being the most important facet.”
The Role of Staff Education in Cyber Hygiene Read More »
Written by Breton Chan, Privasec’s Marketing ExecutiveHow prepared is your business for upcoming challenges in the digital landscape?In recent research data released by the Ponemon Institute and IBM Security, cyber crimes accounted for 18.6% of all crime in Singapore. The average cost of a data breach per organisation in the ASEAN bloc sits
Ensure business continuity via long-term Cyber Hygiene practices Read More »
