SecurityBrief New Zealand - New Zealand's leading source of cybersecurity and threat news

ThreatQuotient launches automation capability for detection and response

"The focus of ThreatQ TDR Orchestrator is data, not process. In detection and response, what is learned when performing an action is far more important than the action itself."More

07 May

Ransomware recovery costs increase as businesses are hit hard

Average ransomware recovery cost in Asia Pacific and Japan (APJ) has increased from US$1.16 million to US$2.34 million, more than doubling in one year.More

07 May

Imperva advances API security solution with CloudVector acquisition

"Combined with an expanding surface area and novel exploits, all organisations need stronger API visibility and advanced protection."More

07 May

InternetNZ discloses vulnerability that can be used to carry out cyberattacks

The vulnerability, called TsuNAME, was noticed in February 2020 in the .nz registry.More

Interpol announces it will join the Coalition Against StalkerwareMore

Why DevSecOps must strive for effective enforcement measuresMore

Avast identifies new cryptocurrency malware HackbossMore

Targeted ransomware attacks on the rise, Kaspersky findsMore

'Catastrophic forgetting': What it is, and how to prevent itMore

A look at the MS Exchange zero-days and how to protect your businessMore

Why uptime and performance are key to cloud security

The cloud has virtually infinite redundancy, storage and compute power, so why reinvent it? True cloud security should be delivered from the cloud itself.More

Data breaches enabling blackmail, extortion and intellectual property theft

Data breaches and cyberattacks are no longer just an online issue.More

Corporate security failing to keep pace in new COVID-19 world

Corporate security is failing to keep pace in the new normal of remote working in the wake of the COVID-19 pandemic, says Fujitsu. More

Fortinet looks to reduces cyber skills gap with Training Advancement Agenda

“Fortinet is committed to solving today’s biggest cyber challenges, including addressing the talent shortage the industry faces, as both a technology company and learning organisation."More

Fortinet: Reduce risk with consistent security

Cornelius Mare, Fortinet A/NZ Director, Security Solutions, explains how consistent security can reduce risk whilst streamlining NOC/SOC operations and minimising costs.More

IoT connections to generate $16 billion in security revenue as new threat vectors arise

"There are limited IoT security solutions in the market, due in large part to the fragmented nature of the IoT itself."More

Entrust acquires identity verification company WorldReach

Global security company Entrust has acquired WorldReach, enabling solutions for Digital Traveller and Citizen Identity experiences.More

ThycoticCentrify launches additions to DevOps Secrets Vault

"With the need for cloud security skyrocketing, enterprises can now address these new use cases more efficiently with an integrated solution.”More

Uptick in cloud-based identity and access management in enterprises - survey

The popularity of cloud-based identity and access management (IAM) adoption in enterprises is on the rise.More

Automotive Security Research Group selects ThreatQuotient

ThreatQuotient is throwing its weight behind the development of automotive cybersecurity, specifically threat intelligence sharing for automotive products.More

Cloud native computing adoption sees increase in security concerns

"We are at a pivot point in terms of the evolution of both the developers role as well as a transformation within the security industry as a whole."More

Why the rise of containers has created a vulnerability crisis

A rise in the use of Kubernetes and Docker services — and increased adoption of DevOps methodologies — have all contributed to the rise in popularity of containers. But as with all emerging technologies, there are risks.More

New research by Netacea into digital fingerprint and identity thief

Bot detection and mitigation company Netacea has published new research into the Genesis Market, an invite-only deep web marketplace that trades in digital fingerprints and enables buyers to impersonate victims online.More

Greater demand for modern data protection, disaster recovery as COVID sees increase in attacks

Data-driven organisations must evaluate evolving requirements for backup and disaster recovery to combat emerging workload challenges.More

Auth0 launches new feature for business customer identities

"We are thrilled to launch Auth0 Organizations as our next-generation offering for easy onboarding, authentication, and administration of business customers.”More

Trend Micro launches cloud security platform on AWS Marketplace

Organisations that build on AWS are now able to leverage Trend Micro Cloud One to protect their cloud-based environments.More

Entrust launches PKI as-a-Service to better secure cloud apps

The next generation of its high-assurance PKI, Entrust PKIaaS, is designed to be secure, quick to deploy, scale on-demand, and run in the cloud.More

Fortinet releases 5G optimised solutions for networking and security

Tthe FortiGate 7121F delivers the security necessary for 5G networks and enterprise Zero Trust Access, while FortiExtender 511F-5G provides wireless WAN connectivity for SD-WAN and SASE solutions.More

Organisations faced unprecedented ransomware risk in 2020

Enterprises faced unprecedented cybersecurity risk in 2020 from increasing attack volume, the pandemic-driven digital transformation of work, and generally deficient cyber preparedness and training.More

Palo Alto Networks establishes cybersecurity consulting group Unit 42

The group will help enterprises respond to emerging threats as they navigate an increase in costly, crippling cyberattacks.More

New onboarding standard to secure Internet of Things launched

A new onboarding standard to secure Internet of Things has been created by the FIDO Alliance. More

Voyager launches customer experience squad for flagship VoIP solution

The updated solution will focus on improving customer interactions, behind the scenes operations, and system improvements. More

Massive WHO scam busted - 'DarkPath Scammers' group suspected

The scam campaign comprised a network of 134 websites that attempted to lure people in by asking them to take a survey for a monetary reward.More

Video: 10 Minute IT Jams - SonicWall manager dissects zero trust security

Today’s interviewee is SonicWall head of presales for APAC, Yuvraj Pradhan, who discusses various talking points surrounding zero trust security.More

The challenge of ensuring effective protection against DNS attacks

The ways in which bad actors can use DNS to mount attacks are numerous. Here are some of the most popular ones.More

Threat notification isn’t the solution – it’s a starting point

With Sophos MTR, organisations are backed by a team of threat hunters who take targeted actions to neutralise even the most sophisticated threats.More

Ransomware recovery costs more than doubled in past year

"The findings confirm the brutal truth that when it comes to ransomware, it doesn't pay to pay."More

CrowdStrike launches integrations to advance NDR for enterprise

"This integration with NDR partners provides mutual customers a comprehensive, holistic cybersecurity solution with enhanced visibility, streamlined detection and response and frictionless automation."More

Attivo Networks announces SentinelOne integration to increase threat protection

The integrated solution creates a defence against sophisticated attackers and provides comprehensive coverage across a broad set of attack techniques, as documented in the MITRE ATT&CK matrix.More

How to mitigate business transformation risk

The coming years hold lots of fresh business opportunities for those positioned and ready to take advantage of them.More

eCommerce losses to online payment fraud to exceed $20 billion in 2021

The use of artificial intelligence will enable behavioural biometrics in this area, which will increase security across all potential fraud channels.More

Messaging app used to control and distribute malware

Hackers are using instant messaging app Telegram for remote control and distribution of malware, according to Check Point Research.More

You're invited: Join CorPlan in Wellington for IBM Think 2021

IBM Think 2021 is just around the corner and it’s shaping up to be a huge event that brings the latest in artificial intelligence, data, and hybrid cloud to everyone.More

New research reveals customer behaviour around fraud risks

"Timeliness is key, you must get the alert in front of people at the exact moment they are at risk of fraud. Without this, banks will continue to spend huge amounts of money on fraud prevention messaging that will never have an impact."More

Quest Software launches solutions for operations, protection and governance

"We are excited about this new strategic direction and believe it will deliver strong value for our global customers as they further their data-centric transformation projects."More

CISOs facing rising security debts

Chief information security officers are facing a rising security debt to secure their organisations against an increasing volume of attacks by well-armed criminals. More

Sharp increase in cyber attacks in last quarter of 2020 - report

There was an increase in the number of attacks aimed at the trade industry and medical institutions, as well in the number of social engineering attacks on individuals.More

Vectra AI releases new endpoint integration to Cognito platform

Cloud network detection and response company Vectra AI has released extended endpoint detection and response native integration into its Cognito platform.More

Hackers hit Apple with ransomware, MacBook design files exposed

Hackers are attempting to extort Apple in exchange for not leaking stolen files.More

A guide to combating Active Directory misconfigurations

With so many attacks abusing misconfigurations in Active Directory, it’s time to fix it, writes Attivo Networks regional director for ANZ Jim Cook.More

COVID-19 has changed the way companies handle data security

According to data classification company Titus, the rise in remote working under COVID-19 has delivered far-reaching changes in how we do business, with significant implications for CISOs, compliance, and data governance officers. More

Protecting endpoints (and users) that have left the office

To access work emails, it may suffice to use with multi-factor authentication. But if users want to access customer data, that security control isn’t enough.More

Dell Technologies partners with SecureWorks for new security service

The new Dell Technologies Managed Detection and Response powered by Secureworks TaegisXDR provides 24/7 security across endpoint devices, data centre networks and cloud environments.More

Kaspersky launches new course to defend users against doxing

"Knowing the threats that are out there makes it easier to take measures to avoid them, and one such threat is doxing - the act of gathering and revealing identifying information about someone online against their will."More

SolarWinds adds three executives to its C-suite team

The company says the new appointments will bolster the company’s customer experience, security and product innovations.More