We can help with SG Cyber Safe Certification
OUR SERVICES
UAS & C-UAS Assurance, Training & Intelligence
The ripple effect from Russia-linked SolarWinds hack has reached the banking shores of Singapore. The Monetary Authority of Singapore (MAS) is issuing a third-party risk management directive that requires all financial institutions to assess and manage their exposure to technology risks with third-party suppliers, before entering into a contractual agreement. What does this actually mean […]
Not long ago, I assisted a client of ours with a penetration test of their VMware Horizon remote access solution and discovered a vulnerability affecting how it handles Multi-Factor Authentication (MFA). As a result, with a compromised user account password, I could gain access to the organisations internal network from the internet, bypassing the MFA requirement. In this blog, I’ll provide a high-level summary and explain how I identified and exploited the vulnerability.
CVE-2020-3977: VMware Horizon DaaS Broken Authentication (MFA Bypass) Read More »
It’s mid-Feb and the Privasec team are excited to bring to you two upcoming events, our first physical event of the year in Sydney, Australia, and a virtual session in Singapore.
Written by Breton Chan, Privasec’s Marketing Executive
“Cyber security is a confluence between technology, process and people – with adequate and accurate education of an organisation’s people possibly being the most important facet.”
The Role of Staff Education in Cyber Hygiene Read More »
Written by Breton Chan, Privasec’s Marketing Executive
How prepared is your business for upcoming challenges in the digital landscape?
In recent research data released by the Ponemon Institute and IBM Security, cyber crimes accounted for 18.6% of all crime in Singapore. The average cost of a data breach per organisation in the ASEAN bloc sits at about S$2.7m, with the time taken to identify and subsequently contain an attack clocking in at 287 days; this is an increase from 2019, when the average cost and response time were about S$2.6m and 259 days respectively.
Ensure business continuity via long-term Cyber Hygiene practices Read More »
At some point in time, we have all heard about these tax-related scams. Most security-aware and alert ones will be able to pick them up quickly and report it to the necessary authorities. However, there are many who have still fallen prey to these scams.
“We have a warrant for your arrest” | Scamming the CEO Read More »
The federal, state and local governments across Australia has been called by a taskforce of NSW government-sponsored industry leaders to adopt internationally recognised cyber security standards for cloud services: https://lnkd.in/gQshHg4
Aussie governments urged to adopt global cyber security standards for cloud Read More »
Today is International Data Privacy Day!
Public education on data privacy has come a long way over the last few years. In today’s digital-savvy world, it is important that all of us are well-informed in protecting our data privacy.
Happy International Data Privacy Day! Read More »
Singapore’s Safer Cyberspace Masterplan 2020 builds on the second Pillar of the 2016 Singapore Cybersecurity Strategy and outlines a plan towards the creation of a safer and more secure cyberspace in Singapore. The Cyber Security Agency of Singapore (CSA) has developed this Masterplan in consultation with the cybersecurity industry and academia, to raise the general level of
Singapore’s Safer Cyber Space Masterplan 2020 Read More »
EVERNOTE became the latest member of the “we’ve been hacked” club. And the thing is, what was once a pretty exclusive club now lets just about everyone in these days. I’m a member too. And as I discovered when I was hacked last year, my experience was distressingly commonplace. And yet while being hacked may be
Hacked!: What To Do Next Read More »
