The challenges presented by China's Personal Information Protection Law
PIPL's data localisation mandate places unique requirements on businesses operating in China, and regulators have great leeway to assess fines.
Stories by Christopher Burgess
-
-
Twitch breach highlights dangers of choosing ease of access over security
Attackers broke into the Twitch house and cleaned out everything. Following least-privilege access principles will help others avoid that scenario.
-
Why device identity is the overlooked insider threat
Device / machine identity, especially in association with robotic process automation, can be a conduit for intentional and unintentional insider breaches.
-
Yes, the FBI held back REvil ransomware keys
The ransomware keys might have been acquired by an ally, which would invoke the third-party doctrine where the decision to release was not the FBI's alone.
-
Russia is fully capable of shutting down cybercrime
With internet blocks and high-profile arrests, Russia shows it can crack down on cybercrime when properly motivated.
-
Proofpoint lawsuits underscore risk of employee offboarding
Nearly every employee leaving a company takes data or intellectual property, but few companies adequately screen and monitor for it. Recent court cases underscore the risk.
-
BlackBerry faces bad PR by failing to go public with BadAlloc vulnerability
Although the company informed its OEM customers of the vulnerability, users of IoT devices running its QNX OS were potentially kept in the dark.
-
Recent shadow IT related incidents present lessons to CISOs
Employee use of unauthorised apps have resulted in high-profile data losses. CISOs need to understand why shadow IT exists before addressing it.
-
US and UK issue rare joint guidance protecting the enterprise from Russian GRU brute force campaign
CISOs should leverage this guidance to help get the resources they need to make these attacks too costly for nation-state threat actors and criminals.
-
IT asset disposal is a security risk CISOs need to take seriously
Sensitive company and personal data often leaves organisations on disposed devices. Data may be at risk when equipment is recycled.
-
Colonial Pipeline take-away: Embrace the mandates
DarkSide attack on Colonial is yet another wake-up call for companies to harden systems but history suggests that might not happen.
-
Microsoft Azure Blob leak a lesson to CISOs about cloud security responsibility
Microsoft's apparent misconfiguration of its own cloud bucket exposed third-party intellectual property. Here are the takeaways for CISOs.
-
Coca-Cola trade secret theft underscores importance of insider threat early detection
The trial of Xiaorong You has now started, a research engineer used basic exfiltration techniques to steal trade secrets from Coca-Cola.
Events
EDGE 2023
EDGE is the leading technology conference for business leaders in Australia and New Zealand, built on the foundations of collaboration, education and advancement.
WIICTA 2023
ARN has celebrated gender diversity and recognised female excellence across the Australian tech channel since first launching WIICTA in 2012, acknowledging the achievements of a talented group of female front runners who have become influential figures across the local industry.
ARN Innovation Awards 2023
Innovation Awards is the market-leading awards program for celebrating ecosystem innovation and excellence across the technology sector in Australia.
Brand Post
WatchGuard Boosts Support for ANZ MSPs with the WatchGuardONE program
Sponsored By
