Simon Sharwood reports: Australia has decided that six-year-old children need education on cyber-security, even as it removes other material from the national curriculum. A newly revised draft of the national curriculum for children aged five to sixteen, launched yesterday, added a new strand titled “Considering privacy and security” that “involves students developing appropriate techniques for…
Category: Commentaries and Analyses
Sg: Data breach alerts in Singapore up on new reporting rules, more cyber threats: Experts
Kenny Chee reports: The number of data breach alerts Singapore’s data protection watchdog received tripled in the February-March period compared with the previous two months. This comes amid a string of potential personal data leaks reported in recent months. Legal and information technology security experts said the increase could have been due to a new data breach…
How Cybercriminals Abuse OpenBullet for Credential Stuffing
Cedric Pernet, Fyodor Yarochkin, and Vladimir Kropotov write: … The trend for access-related cybercrime, such as credential stuffing, is steadily rising with no sign of slowing down. According to an Akamai report, there has been a total of 88 billion credential stuffing attacks from January 2018 to December 2019. Credential stuffing, a type of a…
Ripe for the Picking: Hackers Target Agribusinesses
Peter N. McClelland, CIPP/US and Allen N. Trask, III of Ward and Smith write: Agribusiness may not be an industry that the public at large often associates with data breaches and hacking, but whatever the perception may be, the agricultural sector of the American economy is increasingly a ripe target for malicious foreign actors, digital…
Cyberspies target military organizations with new Nebulae backdoor
Sergiu Gatlan reports: A Chinese-speaking threat actor has deployed a new backdoor in multiple cyber-espionage operations spanning roughly two years and targeting military organizations from Southeast Asia. For at least a decade, the hacking group known as Naikon has actively spied on organizations in countries around the South China Sea, including the Philippines, Malaysia, Indonesia, Singapore, and Thailand,…
Codecov starts notifying customers affected by supply-chain attack
Ax Sharma reports: As of a few hours ago, Codecov has started notifying the maintainers of software repositories affected by the recent supply-chain attack. These notifications, delivered via both email and the Codecov application interface, state that the company believes the affected repositories were downloaded by threat actors. The original security advisory posted by Codecov lacked any…