Critical RCE Flaw (CVSS 10) Affects F5 BIG-IP Application Security Servers – Tempemail

Cybersecurity researchers today issued a security advisory warning enterprises and governments across the globe to immediately patch a highly-critical remote code execution vulnerability affecting F5’s BIG-IP networking devices running application security servers. The vulnerability, assigned CVE-2020-5902 and rated as critical with a CVSS score of 10 out of 10, could Continue Reading

Security Flaw in Health Startup Exposed User Accounts and Medical Information | Tempemail

Sourced from LogBox. LogBox, a South African medical data startup that claims it is an “absolutely secure” way to replace paper forms and documentation in sharing patient data with doctors, has exposed user accounts and sensitive patient data following a lapse in security. Anurag Sen, a security researcher, found an Continue Reading

Govt mulls stricter cyber security accountability for agencies – Strategy – Security- Tempemail

The Attorney-General’s Department has flagged that stricter cyber security accountability mechanisms could be on the way for federal government agencies following a string of worrying cyber resilience audits. But the government remains tight-lipped on whether cyber security controls would be enforced, like it is reportedly considering for the private sector as Continue Reading

UK police arrest hundreds after encryption breakthrough – Security- Tempemail

British police said on Thursday they had carried out their biggest operation ever, arresting “iconic” figures and smashing thousands of conspiracies including murder plots after infiltrating a communications service used by criminals. The Tempemail Crime Agency (NCA) said the cracking of the encryption used by EncroChat, which offered a secure Continue Reading

Mandatory Chinese tax app updates to remove backdoor – Security- Tempemail

The saga of the Chinese bank-mandated Aisino Intelligent Tax software that installed a remote access and control backdoor has taken an unexpected turn, as security researchers found it received an update that deletes the malicious code. Trustwave Spiderlabs said the software, which foreign companies have to use to pay local Continue Reading

Over 82,000 Aussies’ details leaked in crypto scam – Security- Tempemail

Personal details of tens of thousands of Australians who fell for a fraudulent cryptocurrency investment scheme that used fake media sites and celebrity endorsements have been leaked onto the web. Singaporean security vendor Group-IB discovered 248,926 sets of personally identifable information, of which 82,263 records were from Australian users, leaked by Continue Reading

AGL loses its IT security chief – Training & Development – Security- Tempemail

Electricity provider and gas supplier AGL has lost its chief information security officer Samantha MacLeod after two-and-a-half years. MacLeod said she had left the company and is considering the next steps in her career. “I have finished up with AGL. Not a decision that I made lightly. However, one that Continue Reading

NSW govt seeks input on next cyber security strategy – Strategy – Security- Tempemail

The NSW government is seeking views from industry to help shape the state’s next cyber security strategy ahead of its launch later this year. Customer Service Minister Victor Dominello on Tuesday called for input from industry partners and cyber security experts as development of the 2020 NSW Cyber Security Strategy Continue Reading

Monash Uni infosec staff find gaping security hole in Palo Alto Networks gear – Security- Tempemail

Palo Alto Networks has issued patches for a critical authentication bypass in several of its enterprise security products that was reported to the security vendor by two Monash University infosec staff. The flaw, discovered by cybersecurity systems analyst Salman Khan and systems engineer Cameron Duck at Monash University, rates 10 Continue Reading