Security News

The Critical Infrastructure Edition of the 2024 Data Threat Report, by technology organisation Thales, found that ransomware incidents at critical infrastructure organisations are on the rise globally - even as these organisations explore the applications and data risks of AI. In a conversation with TechRepublic, Thales' ANZ Director of Data Security Erick Reyes said ransomware attackers are most likely to target critical infrastructure organisations that hold critical data. Critical infrastructure organisations juggling ransomware and AI. Thales' report found that 42% of critical infrastructure organisations in all global markets surveyed were breached at some point in the past - 7% lower than all industries.

Intel471's new report reveals macOS is increasingly targeted by threat actors, who develop specific malware for the operating system or use cross-platform languages to achieve their goals on macOS computers. More malware than ever on macOS. Between January 2023 and July 2024, the researchers observed more than 40 threat actors targeting macOS systems with different malware types, the most popular being infostealers and trojans.

Monitoring evolving DDoS trends is essential for anticipating threats and adapting defensive strategies. The comprehensive Gcore Radar Report for the first half of 2024 provides detailed insights...

A new report has found that Australia's available pool of cybersecurity skills is smaller than realised. The report, Australia's Cybersecurity and Technical Skills Gap, an analysis by security provider StickmanCyber and based on an analysis of ABS census and labour force data, revealed a shortage of 10,000 technical roles throughout the country.

The results demonstrate that the infosec community still needs to do more to educate users on staying safe online. Twenty-five percent stuck their smartphone in a special cover so hackers couldn't steal their data.

IBM recently released its annual Cost of a Data Breach report, revealing that the average cost of a data breach in Australia reached a record-high of AUD $4.26 million in 2024. Initial attack vectors: Phishing was the most common initial attack vector, accounting for 22% of breaches and costing businesses AUD $4.35 million per breach on average.

Electronic manufacturing services provider Keytronic has revealed that it suffered losses of over $17 million due to a May ransomware attack. [...]

Australian organisations have reported the highest rate of data breaches compared with global markets in 2023, according to a new survey. The State of Data Security: Measuring Your Data's Risk report, based on a survey of 1,600 global IT and security leaders as well as telemetry data from 6,100 Rubrik customers, gauged the frequency of cyber incidents related to business email compromises, data breaches, ransomware attacks, insider incidents and inadvertent data exposure.

Progress Software's latest security advisory warns customers about the second critical vulnerability targeting its Telerik Report Server in as many months. Some of you may remember CVE-2019-18935, another deserialization of untrusted data vulnerability affecting Telerik UI for ASP.NET AJAX. It was used by multiple attackers including an unspecified Advanced Persistent Threat group to successfully target US federal agencies in 2023, despite being added to CISA's Known Exploited Vulnerability catalog in 2021.

Progress Software has fixed a critical vulnerability in its Telerik Report Server solution and is urging users to upgrade as soon as possible. Telerik Report Server is an enterprise solution for storing, creating, managing and viewing reports in web and desktop applications.