Cyber Security Weekly Podcast

By MySecurity Media

Listen to a podcast, please open Podcast Republic app. Available on Google Play Store.


Category: Tech News

Open in iTunes


Open RSS feed


Open Website


Rate for this podcast

Subscribers: 39
Reviews: 0

Description

Without trust, society stagnates, economies decline, and businesses fail. This podcast series keeps abreast of the latest trends and challenges in cyber and physical security with interviews, event updates, industry suppliers & government initiatives.

Episode Date
Episode 148 - Privileged Access Management, SingHealth Breach & Beyond Trust solution addressing ASD Top4 - Essential 8
<p>Interview with Gene Ng, Regional Vice President for Asia Pacific &amp; Japan and Ani Chand, Security Architect for Asia Pacific &amp; Japan for BeyondTrust.</p> <p class="MsoNormal">The interview follows a Cyber Risk Leaders forum held on April 11 and taken as an opportunity to consider the on-going compromise of large corporations and government. A case study on the <i>Sing Health</i> data breach is explained, along with the renewed <i>ASD Top 4 &amp; Essential 8</i> and on-going impact on international cyber security.</p> <p class="MsoNormal">Discussed is the ASD white paper, available at <a href="https://www.beyondtrust.com/resources/whitepapers/complying-australian-signals-directorate-asd-mitigation-strategies">https://www.beyondtrust.com/resources/whitepapers/complying-australian-signals-directorate-asd-mitigation-strategies</a></p> <p>For more information on BeyondTrust visit <a href="http://www.beyondtrust.com">www.beyondtrust.com</a></p> <p class="MsoNormal">Recorded in Sydney on April 12, 2019. BeyondTrust were supporters to the Cyber Risk Leader's Forum.</p>
Apr 17, 2019
Episode 147 - Pre-War Phase, Warfare & Cyber: Amongst Space, Air, Land, Sea, Time & Perception - Interview with Dr. Malcolm Davis, ASPI
<p>"In WWII we primarily fought a three-domain fight — sea, air, &amp; land...Today, &amp; in the future, we will be fighting adversaries in seven domains — sea, air, land, space, cyber, as well as two “new-old” domains: perception &amp; time." (1)</p> <p>Whilst in Canberra for the #CyberTaipan National Finals pilot program, we visited the Australian Strategic Policy Institute (ASPI) and met with Dr. Malcolm Davis, Senior Analyst to discuss defence, cyber, space, <a href="https://twitter.com/hashtag/China?src=hash">China</a>, <a href="https://twitter.com/hashtag/USA?src=hash">USA</a>, <a href="https://twitter.com/hashtag/droneswarms?src=hash">droneswarms</a>, <a href="https://twitter.com/hashtag/WarfareTactics?src=hash">Warfare Tactics</a> in this pre-war phase.</p> <p class="MsoNormal">A confronting discussion with terms and reference to the reality of AI/ML driven fire-ant warfare tactics, the '<a href="https://twitter.com/hashtag/Thucydides?src=hash">Thucydides</a> trap', <a href="https://twitter.com/hashtag/slaughterbots?src=hash">slaughterbots</a> and <a href="https://twitter.com/hashtag/hypersonicweapons?src=hash">hypersonicweapons</a> - “brilliant weapons that can think for themselves”</p> <p class="MsoNormal">Recorded 15 March 2019, Canberra.</p> <p class="MsoNormal"><i>RELATED INTERVIEW</i></p> <p class="MsoNormal"><a target="_blank" href="https://www.blubrry.com/mysecurity/35765482/episode-87-australias-offensive-cyber-capability-and-deterrence-in-cyberspace-interview-with-fergus-hanson-aspis-international-cyber-policy-centre/">Episode 87 - Australia’s Offensive Cyber Capability and Deterrence In Cyberspace, interview with Fergus Hanson, ASPI’s International Cyber Policy Centre</a></p> <p class="MsoNormal"><a href="https://www.blubrry.com/mysecurity/42148570/episode-138-cyber-breach-communication-playbook-in-depth-interview-with-author-peter-coroneos/" target="_blank">Episode 138 - Cyber Breach Communication Playbook - In-depth interview with author Peter Coroneos</a> (Discussion includes the '<a href="https://twitter.com/hashtag/Thucydides?src=hash">Thucydides</a> trap' - USA &amp; China)</p> <p class="MsoNormal">REFERENCES &amp; FURTHER READING</p> <p class="MsoNormal">(1) Future War Not Back to the Future, Lt. Gen. Mike Dana. Lt. Gen. Dana is a career logistician and strategic planner. He served in Desert Storm, Operation Restore Hope in Somalia, Operation Iraqi Freedom, and Operation Enduring Freedom. His last joint assignment was as the Director of Strategic Planning and Policy at US Indo-Pacific Command. <a href="https://warontherocks.com/2019/03/future-war-not-back-to-the-future/">https://warontherocks.com/2019/03/future-war-not-back-to-the-future/</a></p> <p><a target="_blank" href="https://www.armed-services.senate.gov/imo/media/doc/Davidson_02-12-19.pdf">ADMIRAL PHILIP S. DAVIDSON, U.S. NAVY, COMMANDER, U.S. INDO-PACIFIC COMMAND, 12 FEBRUARY 2019</a></p> <p class="MsoNormal">"The speed of war has changed, and the nature of these changes makes the global security environment even more unpredictable. It’s dangerous and unforgiving. Time and decision space have collapsed, so our approach to warfare must adapt to keep pace</p> <p class="MsoNormal">Beijing and Moscow continue to develop and field advanced counter-intervention technologies, which include highly maneuverable reentry vehicle and warheads (hypersonic weapons). Beijing and Russia possess cruise missiles and small-unmanned aerial systems (sUAS) that fly different trajectories, making them hard to detect, acquire, track, and intercept due to unpredictable lowflight profiles and sophisticated countermeasures. North Korea retains its nuclear and ICBM capabilities.</p> <p class="MsoNormal">Effective counters to the expanding asymmetric unmanned aerial system (UAS) threat including potential for multiple swarms of small UAS.</p> <p>The challenges grow each year as our forces continue to deploy at unprecedented rates while the DoD grapples with fiscal uncertainty."</p> <p>ASPI REPORTS &amp; REFERENCES</p> <p>ASPI Strategist - <a target="_blank" href="https://www.aspistrategist.org.au/">https://www.aspistrategist.org.au/</a></p> <p>Dr. Malcom Davis - <a target="_blank" href="https://www.aspistrategist.org.au/author/malcolm-davis/">https://www.aspistrategist.org.au/author/malcolm-davis/</a></p> <p>Reports</p> <p><a target="_blank" href="https://www.aspi.org.au/report/agenda-change-2019">https://www.aspi.org.au/report/agenda-change-2019</a></p> <p><a target="_blank" href="https://www.aspi.org.au/report/big-data-china-and-battle-privacy">https://www.aspi.org.au/report/big-data-china-and-battle-privacy</a></p> <p><a href="https://www.aspi.org.au/report/hacking-cash">https://www.aspi.org.au/report/hacking-cash</a></p> <p><a target="_blank" href="https://www.aspi.org.au/report/huawei-and-australias-5g-network">https://www.aspi.org.au/report/huawei-and-australias-5g-network</a></p> <p><a target="_blank" href="https://www.aspi.org.au/report/agenda-change-2019">https://www.aspistrategist.org.au/australia-and-the-taiwan-contingency/</a></p> <p><a target="_blank" href="https://www.aspistrategist.org.au/its-time-to-renew-australias-north-as-a-source-of-strategic-advantage/">https://www.aspistrategist.org.au/its-time-to-renew-australias-north-as-a-source-of-strategic-advantage/</a></p> <p><a href="https://www.aspistrategist.org.au/loyal-wingman-to-take-australias-airpower-into-the-next-era/" target="_blank">https://www.aspistrategist.org.au/loyal-wingman-to-take-australias-airpower-into-the-next-era/</a></p> <p>Additional - WA Government Huawei project</p> <p><a href="https://www.perthnow.com.au/politics/state-politics/metronet-inside-wa-governments-huawei-deal-ng-b881092525z">https://www.perthnow.com.au/politics/state-politics/metronet-inside-wa-governments-huawei-deal-ng-b881092525z</a></p>
Mar 29, 2019
Episode 146 - High-Performance Computing (HPC) and why it matters for Australia: Pawsey Supercomputing Centre
<p>Jane Lo, Singapore Correspondent interviews Mark Stickells, Executive Director, Pawsey Supercomputing Centre, based in Perth, Western Australia.</p> <p class="MsoNormal">Why HPC or Supercomputing – high performance computers that perform at highest operational rate - matters to Australia’s vision for 2030 to be a top tier innovation nation, and the history behind Pawsey, HPC projects, partnerships across the world, and talent development at the centre.</p> <p>Mark is a research executive with more than 20 years’ experience working at a senior level in innovative research and business development roles in complex, multi-stakeholder environments. Through national and international programs and joint-ventures, Mark had successfully led initiatives to accelerate the impact of research, development and education programs for Australia’s key energy, mining and agricultural sectors.</p> <p>He is a former Chief Executive of an LNG research and development alliance of CSIRO, Curtin University and UWA, partnering with Chevron, Woodside and Shell. Prior to his appointment at Pawsey Mark led the innovation and industry engagement portfolio at The University of Western Australia. In addition, Mark is the current Chair of the Board of All Saints’ College and was appointed an adjunct Senior Fellow of the Perth USAsia Centre (an international policy think tank) in 2017.</p> <p>Recorded 13 March 2019 at SuperComputing Asia #SCA2019 in Singapore.</p> <p> </p>
Mar 27, 2019
Episode 145 - #GameOn with #OzCyberinUSA2019 - Interview with Michelle Price, CEO, AustCyber in San Francisco for #RSA2019
<p>In San Francisco for the joint AustCyber and Austrade “Australian Cyber Security Mission to the USA”, MySecurity Media's Director Dave Matrai interviews Michelle Price, AustCyber CEO and discusses Australia’s position on the global cyber security stage.</p> <p class="MsoNormal">The discussion includes how the Australian cyber security industry has changed over the past 3 years and why Australia is an attractive destination for investment into Australian cyber security innovation.</p> <p class="MsoNormal">Recorded 5 March 2019. MySecurity Media were official media partners to AustCyber for the RSA  Conference 2019. #GameOn #OzCyberinUSA2019</p> <p class="MsoNormal">For more information on AustCyber visit <a target="_blank" href="https://www.austcyber.com/">www.austcyber.com</a></p> <p> </p>
Mar 24, 2019
Episode 144 - #CyberTaipan joins an International program delivering a critical skills pipeline with #CyberPatriot #CyberCenturian #CyberArabia
<p>This interview with Michelle Price, Chief Executive Officer of AustCyber and Diane Miller, Director, Global Cyber Education &amp; Workforce Initiatives for Northrop Grumman provides insight into the CyberTaipan Finals Competition held in Canberra on 16 March 2019 and the program's link to the USA, UK and Saudi Arabia.</p> <p class="MsoNormal">Recorded on Saturday, 16 March at the Canberra Institute of Technology. MySecurity Media attended CyberTaipan courtesy of AustCyber.</p> <p class="MsoNormal"><a href="https://australiancybersecuritymagazine.com.au/cybertaipan-finals-competition-creates-focus-on-cybersecurity-in-canberra-podcast-editors-insights/" target="_blank">#CyberTaipan Finals Competition creates focus on CyberSecurity in Canberra - Podcast &amp; Editor's Insights</a></p> <p class="MsoNormal">Saturday, March 16, 2019 was a unique and eventful day for cyber security in the nation’s capital, with two events appropriately linked by AustCyber, the Australian Cyber Security Growth Network (ACSGN). </p> <p class="MsoNormal">BSidesCanberra, into its fourth year, welcomed well over 2,000 delegates from the Infosec community to delve and dive into the dark arts of hacking, breaking and picking at the National Convention Centre. The event was reportedly enlivened with a fire evacuation thanks to a smouldering lithium battery, clearly a sign that the machines were being put to the test. Whilst across the road, at the Canberra Institute of Technology, a national finals pilot program for Australia’s first CyberTaipan competition was underway, with support from some of Australia’s largest enterprises, Northrop Grumman, Blackberry, PwC Australia and Woodside Energy.</p> <p class="MsoNormal">Both events were fully supported by AustCyber, with CyberTaipan delivering a major ‘workforce development pipeline’ project for the ACSGN. The winning team, TSS or The Southport School, took a strong and early lead, and were announced as winners at an awards dinner ceremony at Parliament House that evening. The Canberra Festival fireworks was a timely conclusion and celebration to an eventful day.</p> <p class="MsoNormal">CyberTaipan, Australia’s first such competition, follows that of the CyberPatriot program in the US, now in its eleventh year and CyberCenturian (UK) and CyberArabia (Saudi Arabia) in their fifth years. Facilitated by the US Airforce Association, ten teams from across the east coast of Australia were set through their paces over 4 hours. The task was to protect and defend a corporate network for a local government organisation and undertake a series of challenges along the way. In a sense, these talented high school students were learning to defend against those 2,000+ hackers from across the road at the NCC. Indeed, there is little doubt that the CyberTaipans will soon make their way to one or more of the BSides events being annually held around Australia. </p> <p class="MsoPlainText">Whilst starting on a relatively small scale in 2009, CyberPatriot has grown to involve 6,387 teams from across the USA in 2019. Though the CyberPatriot program isn’t just the beginning. The USA program actually starts for many students with ‘Sarah the Cyber Hero’, created as a pre-reader book for preschools and grandparents, a cyber security and online safety program throughout the 5 -11 years and week-long summer cyber camps for 12-18 year-olds. All these are designed to complement and gap fill the normal curriculum in the classroom.</p> <p class="MsoPlainText">A good example of how CyberTaipan connects and inspires was Josie and Lang, aka Team Sparkling Stars, the only all girls team. Speaking at Parliament House, each were proudly pleased with their day’s effort. “We did better than we thought”, said Josie. Their Teacher and Coach, Matthew Phillips confirmed the two were introduced to each other via CyberTaipan and their respective interests from their Year 11 and Year 12 computer programming class. Josie, now at the Australian National University in her first year of Engineering and IT, and Lang, contemplating a degree next year in computer science or physics, still presented as normal teenage girls. Apart from doing well, when asked what was the stand out for the day? Lang was quick to reply, “Getting up at 8:00am on a Saturday!” A challenge for any teenager.</p> <p class="MsoPlainText">Diane Miller, Director, Global Cyber Education &amp; Workforce Initiatives for Northrop Grumman was clear in her message to the pilot program finalists during her awards ceremony presentation. Diane outlined the cyber defence skills that are taught and nurtured in the program, designed to develop successful professionals in the cyber security world. Highlighting contemporary cybersecurity skills, Diane emphasised the need is much more than just technical skills. Communication, oral and written, is needed to convince executives of the risk, as well as, communicating what has occurred with written trouble reports and forensic reports. They also need to collaborate and work within a multi disciplined team. Importantly, diversity is clearly a contributor to problem solving, yet this then requires leadership as a critical attribute to leading a diverse team. All this needs to be supported with intellectual curiosity and having tenacity to resolve problems through to a successful resolution, as well as acting with integrity in handling sensitive data and acting ethically. CyberTaipan develops all of these skills and reinforces the need for individual skills, producing well rounded students and developing a job ready cyber workforce. Indeed, 92% of students from CyberPatriot end up in roles within cybersecurity and computer science, Diane confirmed.</p> <p class="MsoPlainText">In addition to Northrop Grumman’s anchor support, as an 80,000 person, global employer, CyberTaipan also had big industry support with Blackberry, PwC and Woodside Energy. Rachel Brennan, Manager Cyber Capabilities and Threat Intelligence with Woodside Energy wisely told the students that as a cyber security professional, no two days are the same. Rachel’s role involves the responsibility of up-skilling the entire Woodside Energy workforce, as well red teaming, policy development and incident response. David Nicol, managing director of Blackberry Australia highlighted the needs of business is different based on size and sector, however cybersecurity challenges are often aligned to awareness, policy and technical capability. PwC Australia’s Steve Ingram laid out the endless options open to the CyberTaipan finalists, contrasting a career in cybersecurity to that of the London underground – extensive and interconnected.</p> <p class="MsoPlainText">Yet despite a passionately inspiring close by Michelle Price, AustCyber’s CEO, the highlight of the evening was AustCyber’s Program Director for National Workforce Development, Owen Pierce, as the awards dinner MC. Owen was able to break it right down for all and connect with these young people at their level – with Dad jokes! “Why is Beef Stew not a good password?” Owen asked. “Coz it’s not just not Stroganoff.” I laughed Owen!</p> <p class="MsoPlainText">Stay tuned for CyberTaipan 2020. Not only is an announcement anticipated later in the year but 2020 may hold the prospect for an International competition. Definitely one to get prepared for and recommend any Australian employer, put these and future CyberTaipan finalists down on a LOTBKF list and review on future resumes – these kids will be in the highest demand.</p> <p class="MsoNormal">There were 38 students, aged 12 – 18 years, from across the country competing in the pilot National Finals. The Southport School from the Gold Coast, Queensland took home the prestigious title as the winning team, whilst Lake Tuggeranong College ACT’s team took second place, and Victoria-based Australian Air Force Cadets, 415 Squadron came third. Well done to all! #Gameon #CyberTaipan</p> <p> </p>
Mar 21, 2019
Episode 143 - Security contrasts of HPC & Cloud Computing and introduction to the National Computational Infrastructure at the Australian National University
<p> <p class="MsoNormal">Jane Lo, Singapore Correspondent speaks with Andrew Howard, Cloud Team Manager, National Computational Infrastructure at the Australian National University (Canberra).</p> <p class="MsoNormal">HPC and Cloud Computing have different security considerations and yet both involve humans being the weakest link, in particular within the HPC environment where there is often a higher level of trust required.</p> <p class="MsoNormal">Andrew Howard has decades of hands-on technical, academic and logistics experience covering a wide range of standard and bespoke technologies, languages and applications within Industry, Government and Academia nationally and internationally.</p> <p class="MsoNormal">His current role at the National Computational Infrastructure (NCI) covers working on High Performance Networks, Computing and Cloud systems. He led the development of InfiniCloud an extension of HPC InfiniBand capabilities into Openstack Clouds and the creation of the first trans-Pacific extended InfiniBand network connecting Australia and Singapore through the USA to deliver the next generation of high speed data transfer and distributed computation. Most recently he has worked closely with AARNet to define and implement AARNet-X a 100G network linking NCI to the world at the highest possible speed for big-data science.</p> <p class="MsoNormal">Recorded at Super Computing Asia, held in Singapore, 11-14 March 2019</p> </p>
Mar 17, 2019
Episode 142 - Getting traction in the US Market via the San Francisco Landing Pad - Australian cybersecurity entrepreneurs in residence #OzCyberinUSA2019
<p>In this episode MySecurity Media's David Matrai talks with two Australian entrepreneurs based at the Australian Landing Pad @WeWork, San Francisco. An initiative of Austrade, Landing Pads help market-ready startups and scaleups take their business global.</p> <p class="MsoNormal">Martin Cho of Vertex Security and Matthew Nevin of Cybermerc are two of the Australian entrepreneur residents at the Landing Pad and share their experience of moving into the American market. We’re also joined by Gabe Sulkes, Landing Pad Manager, Australian Trade and Investment Commission (Austrade) who has some terrific advice too. Enjoy the discussion!</p> <p class="MsoNormal">Links:</p> <p class="MsoNormal">Australian Landing Pad – San Francisco - <a href="https://www.australiaunlimited.com/landingpads/locations/san-francisco">https://www.australiaunlimited.com/landingpads/locations/san-francisco</a></p> <p class="MsoNormal">Vertex Security – <a href="https://www.vertextech.com.au/">https://www.vertextech.com.au</a></p> <p class="MsoNormal">Cybermerc – <a href="http://www.cybermerc.com/">www.cybermerc.com</a></p> <p>Recorded in San Francisco as Official Media Partners to the AustCyber USA Trade Mission to the RSA Conference 2019 #OzCyberinUSA2019</p> <p> </p>
Mar 12, 2019
Episode 141 - Insights to Illumio Adaptive Security Platform & Micro-Segmentation
<p>Interview with Andrew Kay, Systems Engineer with Illumio. The Illumio Adaptive Security Platform® (ASP) secures the inside of any data centre and cloud – running any form of compute – with micro-segmentation enabled by application dependency and vulnerability maps.</p> <p>Illumio ASP delivers micro-segmentation that is enabled by combining vulnerability data with real-time traffic visibility. This combination enables organisations to understand how their applications work, see where they are most vulnerable, and use that visibility to create and enforce micro-segmentation policies.</p> <p>Andrew Kay has over 15 years’ experience in security and quality assurance working with organisations across Asia Pacific to strengthen their resilience to cyber threats. Having worked with major industry players like Micro Focus and HPE, Andrew now represents Illumio South Pacific as he combines his knowledge of technology and industry to design and implement solutions that prevent attackers' lateral movement, protect high-value assets and achieve compliance goals.</p> <p>Illumio is supporting the Cyber Risk Meetup events in Sydney and Melbourne in 2019 and is listed on the MySecurity Marketplace, including listed reports; <a target="_blank" href="https://www.mysecuritymarketplace.com/product/how-to-secure-your-crown-jewel-applications/">How to secure your crown jewel applications</a> and <a target="_blank" href="https://www.mysecuritymarketplace.com/product/how-to-build-a-micro-segmentation-strategy/">How to Build a Micro-Segmentation Strategy</a></p> <p><a target="_blank" href="https://www.mysecuritymarketplace.com/product/how-to-build-a-micro-segmentation-strategy/"></a>For more information or to register interest visit <a target="_blank" href="https://www.mysecuritymarketplace.com/product/illumio-adaptive-security-platform/">https://www.mysecuritymarketplace.com/product/illumio-adaptive-security-platform/</a></p> <p><a target="_blank" href="https://www.mysecuritymarketplace.com/product/illumio-adaptive-security-platform/"></a>Recorded on Monday 4 March 2019 in Sydney, Australia</p> <p> </p>
Mar 09, 2019
Episode 140 - DevOps and the journey to DevSecOps with #OzCyberinUSA2019 - Interview with Paul McCarty of SecureStack
<p>Recorded in San Francisco at the RSA Conference and part of #OzCyberinUSA2019, MySecurity Media's Dave Matrai interviews Paul McCarty of SecureStack.</p> <p class="MsoNormal">This is a great story about an American that’s come to Australia, become an Aussie and is on a mission to take his company back to America! Already working with a number of government clients, Paul discusses his insights into DevOps and the journey he is undertaking as part of CyRise.</p> <p class="MsoNormal">Recorded in San Francisco at WeWorks during #RSA2019 and in collaboration with AustCyber and AusTrade. MySecurity Media is the Official Media Partner to AustCyber for the West Coast USA Trade Mission &amp; RSA Conference 2019.</p> <p class="MsoNormal">For more information stay tuned with #OzCyberinUSA2019 or visit www.austcyber.com</p> <p> </p>
Mar 06, 2019
Episode 139 - Probable not Provable Privacy for Census Data vulnerable to attack - Chief Scientist Optus Macquarie University Cyber Security Hub
<p>Interview with Professor Dali Kaafar, Chief Scientist at Optus Macquarie University Cyber Security Hub and Professor at the Faculty of Science and Engineering at Macquarie University. Professor Kaafar and Macquarie University Lecturer Hassan Jameel Asghar, released a paper mid February, titled, <a target="_blank" href="https://arxiv.org/pdf/1902.06414.pdf">‘Averaging Attacks on Bounded Perturbation Algorithms’</a> that identifies and demonstrates a vulnerability of the Perturbation Algorithm used by the <a target="_blank" href="https://www.abs.gov.au/">Australian Bureau of Statistics</a> for its online tool, TableBuilder, that enables querying the Australian Census Data.</p> <p class="MsoNormal">Dali Kaafar has disclosed “In a nutshell, the algorithm named TBE, perturbing answers to the queries by adding noise distributed within a bounded range is faulty and puts the highly sensitive original census data at major risk of being revealed. We demonstrated how an attacker, who may not know the perturbation parameters, can not only find any hidden parameters of the algorithm but also remove the noise to obtain the original answer to any query of choice. None of the attacks we presented depend on any background information. Implications of go beyond re-identification risks. The attack reveals values intended to be hidden by the TBE algorithm and hence reconstructs the original census data. While the attack is applicable to the actual Australian census data available through TableBuilder, for ethical considerations we only show the success of the attack on synthetic data. We note however, that the perturbation method used in ABS TableBuilder tool is proven vulnerable to this attack.</p> <p class="MsoNormal">In response to the research, an ABS spokesperson stated, “The ABS is strongly committed to privacy.  With emerging data analytics techniques, the ABS needs to be on the front foot of any emerging risks to the data we hold.  We have been working,  and will continue to work, with leading experts to ensure we are using the best approaches possible to protect individuals’  data.</p> <p class="MsoNormal">The ABS has been working with Dr Kaafar and his co-researchers on Table Builder, and strategies to mitigate the vulnerability discovered by the researchers since early 2017. The ABS has already implemented measures to address the vulnerability.  This includes reducing the amount of details to be accessed by certain Table Builder applications, strengthening the terms of use of Table Builder and also regularly monitoring the job logs to forestall any possible attacks.</p> <p class="MsoNormal">There is no evidence of anyone’s privacy being compromised with the use of Table Builder.”</p> <p class="MsoNormal">The discussion includes consideration to the Differential Privacy framework and the application of provable privacy versus probable privacy for the 2020 USA Census.</p> <p class="MsoNormal">Interview recorded in Sydney on 26 February 2019.</p> <p class="MsoNormal">Original release on the Australian Cyber Security Magazine website is available <a href="https://australiancybersecuritymagazine.com.au/census-data-at-major-risk-of-being-revealed-vulnerability-discovered-in-the-australian-bureau-of-statistics-tablebuilder-tool/" target="_blank">here</a></p> <p> </p>
Feb 27, 2019
Episode 138 - Cyber Breach Communication Playbook - In-depth interview with author Peter Coroneos
<p><a href="https://www.mysecuritymarketplace.com/product/the-cyber-breach-communication-playbook/" target="_blank"></a>This interview starts with a book review but dives into Peter's long and fascinating journey, starting as the CEO of the Internet Industry Association in 1997 and through to his observations of today's contemporary cyber environment and potential for the next cyber crisis - including an existential threat with an apparent escalating Cyber War between the major powers of USA and China.</p> <p class="MsoNormal">Peter is the CEO of <a target="_blank" href="https://iconcyber.com/">Icon Cyber</a> and the APAC Regional Head for <a target="_blank" href="https://www.cyan.network/">CyAn - CyberSecurity Advisors Network</a></p> <p class="MsoNormal">For a full book review visit <a target="_blank" href="https://issuu.com/apsm/docs/asm_oct_dec_2018/58">https://issuu.com/apsm/docs/asm_oct_dec_2018/58</a></p> <p class="MsoNormal">To purchase the book visit <a target="_blank" href="https://www.mysecuritymarketplace.com/product/the-cyber-breach-communication-playbook/">https://www.mysecuritymarketplace.com/product/the-cyber-breach-communication-playbook/</a></p> <p class="MsoNormal">This book, co-authored with Michael Parker, starts at 2:30am. Waking to the news of a serious cyber security breach, this is a time as a Director or Executive you are best already prepared, rather than scrambling to get with the cyber jargon and have the first read of the Notifiable Data Breach legislation. There are new obligations and an ever increasing expectation on companies and organisations subject to the <i>Privacy Act</i> to get the response right. </p> <p class="MsoNormal">As a ‘playbook’, Peter and Michael have set out to provide clear guidance of a practical nature, so that if organisations are faced with, say a ransomware demand, they have a decision-making framework to help ask the right questions.</p> <p>Recorded in Sydney, 20 February 2019.</p>
Feb 26, 2019
Episode 137 - Digital Risk, Cybersecurity and SCADA network security with GHD Digital
<p>Recorded in St Leonards, NSW, Sunil Sharma, Digital Risk &amp; Cybersecurity Leader with GHD Digital provides insight into the firm’s digital and cybersecurity services, predominantly delivered to industry, resources, mining and critical infrastructure such as Energy, Water and Transport sectors. With increasing data analytics capability, the importance of cybersecurity and network protection rises accordingly and adherence to the Australian Critical Infrastructure Act or Singapore’s Cybersecurity Act. With 10,000 staff across the world, GHD Digital is a leading consultant and engineering firm at the forefront of a digitally transforming industry mindset and regulatory environment.</p> <p>GHD Digital were sponsors of the Cyber Risk Meetup in Sydney (<a href="https://www.cyberriskmeetup.com/nolongerasecret" target="_blank">October 18 - No Longer a Secret</a>) and Perth (<a href="https://www.cyberriskmeetup.com/allindustryallin" target="_blank">November 19 - All Industry All In</a>) and will be supporting the next Perth CyberRiskMeetup on April 10. For more information visit <a href="https://www.cyberiskmeetup.com" target="_blank">www.cyberiskmeetup.com</a></p>
Feb 26, 2019
Episode 136 - CISO Town Hall takeaways and the Cyber Risk Meetup events outlook for Australia and Singapore
<p>First of the year catch up with Shamane Tan, organiser of the Cyber Risk Meetup events in Australia and Singapore. We discuss the recent CISO Town Hall Twitter event and the key takeways from CISOs around the world, upcoming event with the Australian Information Security Association on February 20 in Sydney discussing Prudential Standard CPS 234 and Open Group FAIR (now a Sold Out event) and Cyber Risk Meetups scheduled in Sydney, Melbourne, Perth, Brisbane and Singapore from February through to October.</p> <p>Also a mention for cyber and security industry events being held in Sydney and Melbourne as part of International Women’s Day on 8 March 2019 and a special All Women edition of the Australian Cyber Security Magazine.</p> <p>Relevant links for more information are:</p> <p><a target="_blank" href="https://www.linkedin.com/feed/update/urn:li:activity:6499033288336900098">CISO Town Hall takeaways – Shamane Tan Linkedin post</a></p> <p><a target="_blank" href="https://www.linkedin.com/feed/update/urn:li:activity:6499033288336900098"></a><a target="_blank" href="https://www.cyberriskmeetup.com">CyberRiskMeetup.com</a></p> <p><a target="_blank" href="https://www.cyberriskmeetup.com"></a><a href="https://www.mysecuritymarketplace.com/product/how-to-secure-your-crown-jewel-applications/" target="_blank">Illumio Whitepaper - How to Secure Your Crown Jewel Applications</a></p> <p><a href="https://www.mysecuritymarketplace.com/product/how-to-secure-your-crown-jewel-applications/" target="_blank"></a><a target="_blank" href="https://www.aisa.org.au/">AISA.org.au</a></p> <p><a target="_blank" href="https://www.aisa.org.au/"></a><a target="_blank" href="https://australiancybersecuritymagazine.com.au/australian-cyber-security-magazine-womenincyber-edition-to-be-released-for-international-womens-day-8-march-2019/">Australian Cyber Security Magazine – #WomeninCyber Edition to be released for International Women’s Day – 8 March 2019</a></p> <p> </p>
Feb 11, 2019
Episode 135 - Unified Endpoint Management - Intro to MobileIron for cloud and endpoint security
<p>In this interview we speak with MobileIron’s Frédéric Gillant, Vice President Sales Asia-Pacific and Jonathan Andresen Senior Director, Marketing, Asia-Pacific.</p> <p class="MsoNormal">MobileIron provides cloud and endpoint security which allows enterprise to enforce conditional access based on device posture to protect cloud services, provide and protect cloud apps on the endpoint and segregate business apps and data from personal apps and data on mobile devices. MobileIron allows the CISO to configure and deploy consistent app policies across endpoints and clouds, including a per-app VPN which enables users to access corporate resources behind the firewall.</p> <p class="MsoNormal">For more information visit www.mobileiron.com</p> <p>Recorded at the Canalys Channels Forum, Asia Pacific, held in Hong Kong, 4 - 5 December 2018. MySecurity Media attended the event courtesy of Canalys. @CanalysForum #Canalys</p> <p> </p>
Jan 29, 2019
Episode 134 - Navigating an age of devices and disruption - Insights with Lenovo in Australia and the Asia Pacific
<p>In this episode we sit down with Lenovo’s Australia and New Zealand Managing Director, Matt Codrington, alongside the company's General Manager, Asia Pacific SMB Segment, Takeshi Okuma.</p> <p>In Hong Kong for the Canalys Channels Forum, Lenovo boasts a network of over 10,000 channel partners across Asia Pacific, with 95% of its business coming through the channel. The company claims a steadfast commitment to supporting channel partners’ businesses in navigating an age of disruption and has implemented a comprehensive channel program. Interview discussion includes Lenovo’s overall business strategy and most recent performance in Australia, including a DaaS case study with KPMG and Takeshi Okuma provides a regional overview and insights to a joint Venture between Lenovo and Fujitsu.</p> <p>Recorded at the Canalys Channels Forum, Asia Pacific, held in Hong Kong, 4 - 5 December 2018. MySecurity Media attended the event courtesy of Canalys. @CanalysForum #Canalys</p> <p class="MsoNormal"></p> <p> </p>
Jan 24, 2019
Episode 133 - MSSP Insights, SLAs & APRA Prudential Standard CPS 234 Information Security scheduled for 1 July 2019
<p class="MsoNormal">Vlad Vyshnivetskyy is the Cyber Security Program Lead at <a href="https://www.ac3.com.au/services/managed-services" target="_blank">AC3</a>. AC3 is an Australian owned, operated Managed Services Provider, including Managed Security Services. </p> <p>In this interview, recorded in Hong Kong, we discuss the role of MSSPs, importance of Service Level Agreements (SLAs) and Vlad makes mention of the Prudential Standard CPS 234 Information Security, scheduled to come into affect 1 July 2019, which aims to ensure that an APRA-regulated entity takes measures to be resilient against information security incidents (including cyberattacks) by maintaining an information security capability commensurate with information security vulnerabilities and threats. </p> <p>Prudential Standard CPS 234 Information Security is <a href="Prudential Standard CPS 234 Information Security" target="_blank" title="Prudential Standard CPS 234 Information Security">https://www.apra.gov.au/sites/default/files/cps_234_july_2019_for_public_release.pdf</a></p> <p class="MsoNormal">Vlad is an experienced Cyber Security manager with 20+ of IT experience, certified Project Management Professional (PMP, PRINCE2 and Scrum Master) and with a broad knowledge of information systems, Cyber security solutions, practices, processes, vendors and products, including Palo Alto, IBM, F5, zScaler, HPE, MicroFocus, Cisco, Trend Micro, EMC/RSA. Recorded 5 December, 2018 at the Canalys Channels APAC Forum, Hong Kong. MySecurity Media attended the forum courtesy of Canalys.</p> <p class="MsoNormal">@CanalysForum #Canalys </p> <p> </p>
Jan 16, 2019
Episode 132 - WP Engine & the future of Websites, Fake News & Dark Data
<p> <p class="MsoNormal">As ‘dark data’ becomes an increasingly important topic, corporations are being forced to think about the way they use data more effectively. With the new year underway, many marketing plans are looking to solve this problem of ‘untapped data’ and applying MarTech.</p> <p class="MsoNormal">Mary-Ellen Dugan, Chief Marketing Officer of the WordPress digital experience platform, WP Engine, was in Australia to host a customer summit and provide insights into the future of websites and web data. This interview delves into the direction websites are heading with the issues of ‘dark data;, fake news, authenticity and security.</p> <p class="MsoNormal">Most of the world’s data is classified as ‘dark’, meaning that it is untapped for business or analytic purposes. In the era of the ‘data monopoly’, it is staggering to think that this mine of information is untouched. Living in a world where customer experience reigns supreme, zillions of bytes are a potential key to unlocking invaluable consumer sentiment and improving digital experiences. </p> <p class="MsoNormal">In 2018, WP Engine ran one of the most extensive studies on the Mobile Web - so much so that Google linked to it for its <a target="_blank" href="https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Famphtml.wordpress.com%2F2018%2F10%2F22%2Fthree-years-of-amp%2F&amp;data=02%7C01%7CKristina.Gatsos%40zenogroup.com%7C3f09c932aaa74b0debed08d650d2b7e1%7Cb824bfb3918e43c2bb1cdcc1ba40a82b%7C0%7C0%7C636785263294184014&amp;sdata=74U8ISLNmMn5rrOiffvyqB5i3AUVus4Zye2%2FNSLMR8c%3D&amp;reserved=0">3 year anniversary of AMP</a>. Though there have been previous vague predictions around the death of the website, this study pointed instead to the ongoing challenges that apps face to survive. When consumers use Facebook or Instagram for information, their data belongs to Facebook, rather than going through a brand’s website. This creates major gaps in understanding customer segments and can skew business analytics. So, it is more important than ever for businesses to drive customers to its websites, where they can control content, digital experiences and of course, own all the right data.</p> <p class="MsoNormal">Recorded 29 November, 2018 in Sydney.</p> </p>
Jan 14, 2019
Episode 131 - Augmented & Virtual Reality and fast emerging use on the industrial frontline, with Fountx
<p>Interview with Laurence Beraldo, General Manager, Fountx. Laurence joined TAE Aerospace in June 2016 to head up the development and delivery of TAE Aerospace’s advanced technical product lines as well as enhance TAE Aerospace’s senior leadership team. In July 2017 TAE Aerospace established Fountx Pty Ltd a subsidiary company and Laurence is leading that company to commercialise a world changing product using assisted reality to enhance human capability.</p> <p class="MsoNormal">Laurence was the CEO and Company Secretary for the Royal Queensland Aero Club (RQAC) group of companies where he was the CASA approved Air Operator Certificate appointee and accountable manager for the Airline Academy of Australia. Prior to taking on the role as CEO he headed up aircraft maintenance engineering operations and training. He was formerly an executive manager with Aviation Australia where he worked for 10 years and held a number of senior roles including responsibility for flight safety training, Group Training compliance and operations, business development, international client management and the employment outcomes of more than 1,200 aircraft maintenance engineering graduates. Laurence is trained and qualified in aviation maintenance engineering and management, holds a pilot’s licence, had a 14 year maintenance and training career with the RAAF and managed several successful businesses.</p> <p class="MsoNormal">Recorded in Sydney on 13 November 2018 at the 2nd Augmented and Virtual Reality for Safety, Training, Maintenance and Manufacturing Forum 2018. The event was held in conjunction with the 2nd Immersive Augmented and Virtual Reality Customer Experience, Marketing and Product Development Forum.</p> <p> </p>
Dec 13, 2018
Episode 130 - Augmented & Virtual Reality and fast emerging use on the industrial frontline, with Honeywell & Realwear
<p> </p> <p class="MsoNormal">Interview with Annemarie Diepenbroek, Product Manager, Honeywell and David Francis, Managing Director, Head of APAC, Head of ANZ, Virtual Method, Zappar, Realwear.</p> <p class="MsoNormal">Annemarie Diepenbroek is the Global Product Manager for the Honeywell Connected Plant – Skills &amp; Safety Portfolio. This portfolio increases staff performance and improves plant profitability using Augmented Reality, Analytics, Intelligent Wearables and a suite of Productivity Applications. It directly addresses the looming skills gap in our industry, the need for faster competency and improved field productivity.</p> <p class="MsoNormal">David is involved in various wearables, visual and NLP artificial intelligence, mobile interest-sensing and IoT strategy, advising companies when, where and how they need to take strategic initiatives to head-off Digital Darwinism.</p> <p class="MsoNormal">Recorded in Sydney on 13 November 2018 at the 2nd Augmented and Virtual Reality for Safety, Training, Maintenance and Manufacturing Forum 2018. The event was held in conjunction with the 2nd Immersive Augmented and Virtual Reality Customer Experience, Marketing and Product Development Forum.</p> <p> </p>
Dec 13, 2018
Episode 129 - Industrial Control System (ICS) Cyber Security with Daniel Ehrenreich, Asia ICS Cyber Security Conference 2018
<p>Interview with Daniel Ehrenreich, BSc. an Israel based Consultant at Secure Communications and Control Experts, and Lecturer teaching at cyber security colleges and presenting at ICS cyber defense conferences; Daniel has over 25 years’ engineering experience with electricity, water, gas and power plants systems as part of his activities at Tadiran, Motorola, Siemens and Waterfall Security.</p> <p>The discussion centres around the challenges raised to Industrial Control Systems (ICS) as a result of the Stuxnet attack and the use of uni-directional gateways, or Diodes and importance of physical security systems. Safety, Reliability and Productivity is the key triad for OT.</p> <p>For further information and reading, visit:</p> <p><a href="https://cyberstartupobservatory.com/correctly-understanding-the-cyber-security-triads/" target="_blank">https://cyberstartupobservatory.com/correctly-understanding-the-cyber-security-triads/</a></p> <p>For recent Israel developments on ICS Cyber Security visit:</p> <p><a href="https://www.gov.il/BlobFolder/policy/cyber_security_methodology_for_organizations/he/Cyber1.0_english_617_A4_0.pdf" target="_blank">https://www.gov.il/BlobFolder/policy/cyber_security_methodology_for_organizations/he/Cyber1.0_english_617_A4_0.pdf</a></p> <p><a href="http://www.iebmedia.com/ethernet.php?id=10944&amp;parentid=74&amp;themeid=255&amp;hft=88&amp;showdetail=true&amp;bb=1" target="_blank">http://www.iebmedia.com/ethernet.php?id=10944&amp;parentid=74&amp;themeid=255&amp;hft=88&amp;showdetail=true&amp;bb=1</a></p> <p><a href="https://www.moxa.com/Event/DAC/2017/multiprotocol-smart-io/index.htm" target="_blank">https://www.moxa.com/Event/DAC/2017/multiprotocol-smart-io/index.htm</a></p> <p>Recorded 21 November 2018 in Singapore at Asia ICS Cyber Security Conference 2018. MySecurity Media were conference Media Partners and attended courtesy of the conference organiser.</p> <p> </p>
Dec 06, 2018
Episode 128 - Analysis of Enterprise & Mobility trends in APAC Region - Canalys Channels Forum 2018, Hong Kong #Canalys
<p>Interview with Daniel Liu, Research Analyst on Enterprise and TuanAnh 'TA' Nguyen, Analyst on Mobility market and discussion on 2018 trends and 2019 outlook for the Asia Pacific market. Discussion touches on disparity between China and US technology companies, trends in smart manufacturing, with manufacturing moving out of China and creating an evolution of manufacturing in South East Asia. Other trends include robotics in manufacturing, data centres and competition between cloud providers.</p> <p>Continue to monitor the Canalys Channels Forum, Dec 4 - 6, 2018, Hong Kong. @CanalysForum #Canalys</p> <p>MySecurity Media are media partners and attending the Forum courtesy of Canalys.</p>
Dec 05, 2018
Episode 127 - A Futurist’s Look at Nation-State Cyber Espionage #KLNext Series
<p>Interview with Christian Funk, Head of the Global Research and Analysis Team (GReAT) Germany at Kaspersky Lab discussing nation state attack trends and the ever increasing rise in sophistication.</p> <p class="MsoNormal">Normally someone who analyses the nitty gritty details of attacks, Christian uses a wide angle lens to look at the bigger picture of Nation State attacks and examines what is unique about Nation State actors; how they differ from ordinary crimeware like banking Trojans and what sets them apart in terms of their arsenal, their approach and their capabilities.</p> <p>Recorded 30 October 2018 at Kaspersky Lab Next Conference, Barcelona, Spain. #KLNext.</p> <p>MySecurity Media were participants in this year’s Kaspersky Next conference courtesy of Kaspersky Lab.</p> <p> </p> <p class="MsoNormal"> </p>
Nov 29, 2018
Episode 126 - How much is your data worth on the black market? David Jacoby #KLNext Series
<p>Interview with David Jacoby, IT Security Evangelist with Kaspersky Lab discussing his research into the black market and the availability and price of your personal data. If someone gets hold of your identity, how much is that worth to them? David has researched the value of gaming profiles, social media accounts and other credentials and how it is being bartered on the dark web.</p> <p class="MsoNormal"></p> <p class="MsoNormal">David also provides excellent direction on the use of pass-phrases as a better alternative to passwords.</p> <p class="MsoNormal">For more information on David Jacoby, visit <a href="https://www.kaspersky.co.uk/about/team/david-jacoby">https://www.kaspersky.co.uk/about/team/david-jacoby</a> or follow at @jocobydavid</p> <p>Recorded 30 October 2018 at Kaspersky Lab Next Conference, Barcelona, Spain. #KLNext. Apologies for the initial sound quality (echo).</p> <p>MySecurity Media were participants in this year’s Kaspersky Next conference courtesy of Kaspersky Lab.</p> <p> </p>
Nov 29, 2018
Episode 125 - The Future of Autonomous Mitigation – Titania’s solution to ‘alert fatigue’ - #KLNext Series
<p>Interview with Ian and Nicola Whiting, Titania, the CEO and CSO respectively, as well as Mr &amp; Mrs. Ian is a former accredited penetration tester and an innovator in his field, having designed and brought to market the world’s first automated Configuration Analysis tools. Independently verified as 100% accurate, these trusted Titania products help enterprise security professionals in more than 95 countries maintain the most secure networks around the world.</p> <p>Nicola, an experienced Chief Operations &amp; Strategy Officer with a strong history of working in Cyber Security / Information Security, has led Titania from an ambitious start-up to a multi-million pound, award-winning company – in less than a decade.</p> <p>Nicola is also an advocate for Autism and Women in Cyber, where she provides government level advice on Diversity and is Worcestershire’s Commissioner for the UK Cyber Science &amp; Innovation Audit.</p> <p>For more information visit <a target="_blank" href="www.titania.com">www.titania.com</a></p> <p>Recorded 30 October 2018 at Kaspersky Lab Next Conference, Barcelona, Spain. #KLNext. Apologies for the sound quality (echo).</p> <p>MySecurity Media were participants in this year’s Kaspersky Next conference courtesy of Kaspersky Lab.</p>
Nov 22, 2018
Episode 124 – Electronic Frontier Foundation – Privacy, Policy, Police & Problems - #KLNext Series
<p>The <a target="_blank" href="https://www.eff.org/about">Electronic Frontier Foundation</a> is the leading nonprofit organization defending civil liberties in the digital world. Founded in 1990, EFF champions user privacy, free expression, and innovation through impact litigation, policy analysis, grassroots activism, and technology development. The EFF works to ensure that rights and freedoms are enhanced and protected as the use of technology grows.</p> <p class="MsoNormal"></p> <p class="MsoNormal">This interview with Eva Galperin, Director of Cybersecurity dives into cybersecurity, privacy and security and the future around implants, robotics and Avatars. Prior to 2007, when she came to work for EFF, Eva worked in security and IT in Silicon Valley and earned degrees in Political Science and International Relations from SFSU. Her work is primarily focused on providing privacy and security for vulnerable populations around the world. To that end, she has applied the combination of her political science and technical background to everything from organizing EFF's Tor Relay Challenge, to writing privacy and security training materials (including Surveillance Self Defense and the Digital First Aid Kit), and publishing research on malware in Syria, Vietnam, Kazakhstan. When she is not collecting new and exotic malware, she practices aerial circus arts and learning new languages.</p> <p class="MsoNormal">Recorded 30 October 2018 at Kaspersky Lab Next Conference, Barcelona, Spain. #KLNext. MySecurity Media were participants in this year’s Kaspersky Next conference courtesy of Kaspersky Lab.</p> <p> </p>
Nov 19, 2018
Episode 123 - Interview with Jane Frankland and answering the Gender Bias Question - #KLNext Series
<p>Interview with Jane Frankland, an award-winning cybersecurity entrepreneur, consultant, speaker and market influencer. Having spent nineteen years in cybersecurity, she has built and sold her own penetration testing firm, and been actively involved in leading industry accreditations, schemes and forums. She is the founder of Cyber Security Capital, the IN Crowdd community, and the IN Security movement.</p> <p>Author of <i>Insecurity: Why a Failure to Attract and Retain Women in Cybersecurity Is Making Us All Less Safe, y</i>ou can learn more about Jane and her initiatives via <a target="_blank" href="http://jane-frankland.com/">http://jane-frankland.com</a></p> <p><a target="_blank" href="http://jane-frankland.com/"></a>Recorded 30 October 2018 at Kaspersky Lab Next Conference, Barcelona, Spain. #KLNext.</p> <p>MySecurity Media were participants in this year’s Kaspersky Next conference courtesy of Kaspersky Lab.</p> <p class="MsoNormal"></p> <p> </p>
Nov 17, 2018
Episode 122 - Kaspersky Lab insights from Europe and Women in Cyber program - #KLNext Series
<p>MySecurity Media were participants in this year’s Kaspersky Next conference, held in Barcelona, Spain. The conference gathers together journalists and experts from around the world to discuss the latest research and future possibilities in the areas of security, industry and technology.</p> <p class="MsoNormal">This interview with Ilijana Vavan, Managing Director, Europe  and Alice Collins, Communications and Head of Women in Cyber program discusses the scale of Kaspersky Lab and the company's support of women in cyber.</p> <p class="MsoNormal">Ilijana introduces Kaspersky Lab as a global cybersecurity company, founded in 1997, with over 400 million users and 270,000 corporate clients. The company has a comprehensive security portfolio with leading endpoint protection and a number of specialised security solutions and services to fight sophisticated and evolving digital threats.</p> <p>Recorded 30 October 2018 at Kaspersky Lab Next Conference, Barcelona, Spain. #KLNext</p> <p> </p>
Nov 16, 2018
Episode 121 - Looking into a black mirror: What hackers could do with your memories - #KLNext Series
<p><i>Interview with </i><i>Laurie Pycroft, Oxford University with </i><i>Denis Makrushin &amp; Dmitry Galov of Kaspersky Lab.</i></p> <p class="MsoNormal">If you think that cyber threats targeting your body and your mind is something that belongs in the future, or that being able to retain and share your memories forever is a just something from a dystopian television series. Then think again. Connected deep brain stimulation devices already exist to help sufferers of many neurological disorders, and this fundamental technology will eventually enable memory enhancement, implantation and more. Even today, connected medicine is creating an online-ecosystem for monitoring patients, tuning implants, remote diagnostic (telemedicine) or simply for collecting the data for future treatments. But any new pioneering technology, like 'magic', has another side – a dark side. In this case, the black magic could allow for the manipulation, control and abuse of your data.</p> <p class="MsoNormal">In their collaborative research, Kaspersky Lab and Oxford University researchers examine cyber vulnerabilities of current and the emerging future of implantable things. Implications of memory control and external access creates opportunities for empathy, entertainment and legacy but also for use by law enforcement, abuse by repressive regimes, exploitation and other cyber threats from nation states and criminals, as well as mass manipulation of groups. Importantly, guidelines and regulations around implants and new generation devices with update-able firmware will be needed and not yet observed, there is potential for 'in the wild' mass attacks on implant human populations.</p> <p class="MsoNormal">Recorded October 30 at  Kaspersky Lab Next Conference, Barcelona, Spain. #KLNext</p> <p class="MsoNormal">Apologies for the sound quality (echo).</p> <p> </p>
Nov 14, 2018
Episode 120 - Intelligent Building System Vulnerabilities - Guidance on assigning mitigation strategies, Dr. David Brooks
<p>David Brooks, PhD, MSc, is the Post Graduate Security Science Coordinator at Edith Cowan University and has released research into intelligent building critical vulnerabilities and mitigation strategies.</p> <p class="MsoNormal">The ASIS Foundation, in partnership with BOMA International (BOMA) and the Security Industry Association (SIA), funded the project which has created first-of-its-kind guidance for practitioners in the security and building management fields.</p> <p class="MsoNormal"><a href="https://community.asisonline.org/viewdocument/intelligent-building-management-sys">Intelligent Building Management Systems: Guidance for Protecting Organizations</a> provides a framework to help decision-makers assign a risk-based criticality or impact to their building and asks relevant security questions to develop appropriate mitigation strategies. It also serves to establish a common language between the many intelligent building stakeholders.</p> <p class="MsoNormal">The guidance is based on original research, <a href="https://community.asisonline.org/viewdocument/building-automation-control-syste">Building Automation &amp; Control Systems: An Investigation into Vulnerabilities, Current Practice and Security Management Best Practice</a>, by David J. Brooks, Michael Coole, and Paul Haskell-Dowland of Edith Cowan University in Perth, Australia.</p> <p class="MsoNormal">David Brooks commenced his career in Military Air Defence, moving into the Electronic Security sector and, later, Security Consultancy. Dave is widely published with over 18 International Journal articles, seven book chapters and four books. His past security projects include the Roy Hill PMC team designing and implementing a project wide security system for the Roy Hill Iron Ore project. The project is a Greenfiled site with a capital expenditure of A$10 billion.</p> <p class="MsoNormal"><i>Disclosure</i>- Chris Cubbage co-authored a 2012 book with David Brooks: Corporate Security in the Asia-Pacific Region: Crisis, Crime, Fraud, and Misconduct, Christopher J. Cubbage, CPP, David J. Brooks, PhD</p> <p class="MsoNormal"><a href="https://www.crcpress.com/Corporate-Security-in-the-Asia-Pacific-Region-Crisis-Crime-Fraud-and/Cubbage-CPP-Brooks-PhD/p/book/9781439892275">https://www.crcpress.com/Corporate-Security-in-the-Asia-Pacific-Region-Crisis-Crime-Fraud-and/Cubbage-CPP-Brooks-PhD/p/book/9781439892275</a></p> <p class="MsoNormal">GUIDELINE LINKS</p> <p class="MsoNormal">Security Industry Association (SIA)</p> <p class="MsoNormal"><a href="https://www.securityindustry.org/wp-content/uploads/2018/08/Intelligent-Building-Management-Systems-Guidance-for-Protecting-Organizations.pdf">https://www.securityindustry.org/wp-content/uploads/2018/08/Intelligent-Building-Management-Systems-Guidance-for-Protecting-Organizations.pdf</a></p> <p class="MsoNormal">ASIS International (media link)</p> <p class="MsoNormal"><a href="https://www.asisonline.org/publications--resources/news/press-releases/new-research-reveals-intelligent-building-security-risks-vulnerabilities-and-mitigation-strategies/">https://www.asisonline.org/publications--resources/news/press-releases/new-research-reveals-intelligent-building-security-risks-vulnerabilities-and-mitigation-strategies/</a></p> <p class="MsoNormal">BOMA International (BOMA)</p> <p class="MsoNormal"><a href="https://www.boma.org/BOMA/Research-Resources/Trends/Cybersecurity.aspx">https://www.boma.org/BOMA/Research-Resources/Trends/Cybersecurity.aspx</a></p> <p class="MsoNormal">FULL REPORT via SIA</p> <p class="MsoNormal"><a href="https://www.securityindustry.org/wp-content/uploads/2018/08/BACS-Report_Final-Intelligent-Building-Management-Systems.pdf">https://www.securityindustry.org/wp-content/uploads/2018/08/BACS-Report_Final-Intelligent-Building-Management-Systems.pdf</a></p> <p> </p>
Nov 06, 2018
Episode 119 – Interview with Prof. Martin Gill for the Outstanding Security Performance Awards – The OSPAs
<p>Professor Martin Gill is a criminologist and the Director of Perpetuity Research. He is also the founder of the Outstanding Security Performance Awards. Martin has been involved in a range of studies relating to crime and security. He is widely published (14 books and over 100 articles) including the second edition of the ‘Handbook of Security’ published in 2014.</p> <p class="MsoNormal">Martin is a Fellow of the Security Institute, a member of the Company of Security Professionals and a Trustee of the ASIS Foundation. In 2010, he was recognised by the BSIA with a special award for ‘Outstanding Service to the security sector’. In 2016, he won the Imbert Prize at the Association of Security Consultants and ASIS International awarded him a Presidential Order of Merit for distinguished service. IFSEC also placed him the fourth most influential fire and security expert in the world.</p> <p class="MsoNormal">For the fourth year running, the Australian OSPAs partnered with ASIAL’s Security Awards for Excellence to celebrate the success and hard work of companies and individuals across the Australian security industry. The competition this year was tough. As always, winners and runners up were selected by a judging panel of esteemed security professionals.</p> <p class="MsoNormal">Recorded on the day winners were unveiled at a prestigious Awards Ceremony and Dinner on 18 October at Sydney’s Doltone House Hyde Park, where security professionals gathered to reward outstanding performance. For the list of Category Winners, visit</p> <p class="MsoNormal"><a href="https://au.theospas.com/2018/10/18/australian-ospa-winners-announced-at-the-2018-security-awards/">https://au.theospas.com/2018/10/18/australian-ospa-winners-announced-at-the-2018-security-awards/</a></p> <p class="MsoNormal"><a href="https://au.theospas.com/2018/10/18/australian-ospa-winners-announced-at-the-2018-security-awards/"></a>For more information visit <a target="_blank" href="https://theospas.com/">https://theospas.com/</a></p> <p> </p>
Nov 04, 2018
Episode 118 - Meet cyber twins @noushinshbb @NegarShbb #womenincyber #malware #analysis #appsec
<p>Meet twins, Noushin Shabab and Negar Shabab, perhaps, the only twins in Australia specialising in cybersecurity. Noushin is a malware researcher with Kaspersky Lab and Nagar is an Application Security consultant with PS&amp;C Group.</p> <p>These twins grew up attending a special school for whiz kids and are now slowly making their mark in education and the industry to bridge the country’s cybersecurity talent shortage. From the age of 11 years when first using a computer, the two recall growing up, taking turns to make ‘escape room’ versions in their home to see who could find an escape at the fastest time. These early childhood memories developed a fascination with solving problems, especially with puzzles and board games. When they reached middle school, the two learnt computer programming which nurtured a deeper interest in programming.</p> <p>In high school they frequently competed in a number of national programming contests and managed to sit on within the top 3 positions for a few. It was around this time, they realised they wanted to pursue a career in computing and did a degree in programming and computing in university.</p> <p>These identical twins are perhaps just of a few Australians with a niche in reverse engineering. Based out of the Melbourne office at Kaspersky Lab, Noushin says, “In 2016 when I first started looking for a job in this field, I noticed how large the skill gap shortage of security researchers were in Australia. However, since the attack that caused Census (Australian Bureau Of Statistics) to shut down and Wanna Cry ransomware, the government and education ministries found it crucial to grow a new breed of students and professionals in the field of cybersecurity. Her older sister by a few minutes, Negar adds, “Our new projects and partnerships with these universities and are very exciting as both parties can truly make a difference for this industry.”</p> <p>This interview was recorded in Sydney on 18 October, 2018.</p>
Oct 29, 2018
Episode 117 - GDPR & Cambridge Analytica – A Cyber week in London with Jane Lo, Singapore Correspondent
<p> <p class="MsoNormal">Jane started her career in Canada after graduating from Electrical and Computer Engineering studies, and worked in the City of London for 10 years consulting for Corporates and Banks, before relocating back to Singapore. er experience included using data predictive analytics for fraud at global financial institutions (Deustche Bank, JP Morgan) and advisory to financial institutions with PriceWaterHouseCoopers.  Amongst 24+ articles with MySecurity Media her key Cyber Security publications include</p> <p class="MsoNormal">Chinese New Year Heist (<a href="https://issuu.com/apsm/docs/asm_feb_march_2017_final">https://issuu.com/apsm/docs/asm_feb_march_2017_final</a>), </p> <p class="MsoNormal">Cyber Security of Assets in the InterConnected Era (<a href="https://issuu.com/apsm/docs/asm_aug_sep_2017">https://issuu.com/apsm/docs/asm_aug_sep_2017</a>) </p> <p class="MsoNormal">Data Protection &amp; Privacy – Perspectives from Facebook, Google &amp; Apple (<a href="https://issuu.com/apsm/docs/apsm_sep_oct_2018/38">https://issuu.com/apsm/docs/apsm_sep_oct_2018/38</a>)</p> <p class="MsoNormal">Interview recorded at Marina Bay Sands, Singapore on 12 September 2018 at <a href="http://dcd.events/conferences/singapore-2018">Data Center Dynamics – DCD South East Asia</a> <a href="https://twitter.com/hashtag/DCDAustralia?src=hash"></a><a href="https://twitter.com/hashtag/DCDAustralia?src=hash">#DCDSingapore</a></p> </p>
Oct 27, 2018
Episode 116 – Singapore insights with Senior Fellow Benjamin Ang, Cyber and Homeland Defence Programme of Centre of Excellence for National Security, RSIS, Singapore
<p class="MsoNormal">Benjamin Ang is a Senior Fellow in the Centre of Excellence for National Security (CENS) at the S. Rajaratnam School of International Studies (RSIS), an autonomous Singapore graduate school and policy-oriented think tank within the Nanyang Technological University.</p> <p class="MsoNormal">Benjamin Ang leads the Cyber and Homeland Defence Programme of CENS, which explores policy issues around the cyber domain, international cyber norms, cyber threats and conflict, strategic communications and disinformation, law enforcement technology and cybercrime, smart city cyber issues, and national security issues in disruptive technology.</p> <p class="MsoNormal">Prior to this, he had a multi-faceted career that included time as a litigation lawyer arguing commercial cases, IT Director and General Manager of a major Singapore law firm, corporate lawyer specialising in technology law and intellectual property issues, in house legal counsel in an international software company, Director-Asia in a regional technology consulting firm, in-house legal counsel in a transmedia company, and senior law lecturer at a local Polytechnic, specialising in data privacy, digital forensics, and computer misuse and cybersecurity.</p> <p class="MsoNormal">Benjamin graduated from Law School at the National University of Singapore and has an MBA and MS-MIS (Masters of Science in Management Information Systems) from Boston University. He is qualified as an Advocate and Solicitor of the Supreme Court of Singapore, and was a Certified Novell Network Administrator back in the day. He also serves on the Executive Committee of the Internet Society Singapore Chapter.</p> <p>Interview recorded September 12, 2018, Singapore.</p>
Oct 27, 2018
Episode 115 – ASD Essential 8 cybersecurity strategies applied to business requirements, insights with Tony Campbell CISSP, CISM, CIPM @BSidesPer @AustCyberSecMag
<p> <p class="MsoNormal">Tony Campbell is a Security Architect and Editor of the Australian Cyber Security Magazine (ACSM) – in the lead up to Issue 6 of the ACSM we discuss the business and board applications of the <a target="_blank" href="https://acsc.gov.au/publications/protect/essential-eight-explained.htm">Australian Signals Directorate (ASD) Essential 8 cybersecurity strategies</a> and how these can be applied and inform the business and board of directors.</p> <p class="MsoNormal">Recorded at BSides Perth 2018 which attracted over 300 delegates, including kids and families, to UWA Business School and along with t-shirts, beanies and tool kits, delegates also received a cool and unique handmade conference badge, using a NodeMCU ESP8266 WiFi SoC. Security BSides (commonly referred to as BSides) is a <a title="Hacker convention" href="https://en.wikipedia.org/wiki/Hacker_convention">hacker convention</a>, held amongst a growing eco-system of events in Australia and New Zealand that provide a community driven framework for information security conferences.</p> For the full podcast series from #BsidesPerth visit <a target="_blank" href="https://australiancybersecuritymagazine.com.au/bsidesper-2018-podcast-series-bsidesperth/">https://australiancybersecuritymagazine.com.au/bsidesper-2018-podcast-series-bsidesperth/</a></p>
Oct 25, 2018
Episode 114 – Capture the Flag competition @BSidesPer
<p> <p class="MsoNormal">Interview with Alex Dolan (@dolesification) and #Osprey (Michael) in their roles as facilitators of the #BSidesPerth Capture the Flag #CTF competition held at BSides Perth in September 2018.</p> <p class="MsoNormal">With a focus on web applications and starting with GRC challenges, the CTF had a unique WA flavour and lean with IoT device security. Well done to ‘Tony’ who took a commanding lead.</p> <p class="MsoNormal">Recorded at BSides Perth 2018 which attracted over 300 delegates, including kids and families, to UWA Business School and along with t-shirts, beanies and tool kits, delegates also received a cool and unique handmade conference badge, using a NodeMCU ESP8266 WiFi SoC. Security BSides (commonly referred to as BSides) is a <a title="Hacker convention" href="https://en.wikipedia.org/wiki/Hacker_convention">hacker convention</a>, held amongst a growing eco-system of events in Australia and New Zealand that provide a community driven framework for information security conferences</p> <p class="MsoNormal">For the full podcast series from #BsidesPerth visit https://australiancybersecuritymagazine.com.au/bsidesper-2018-podcast-series-bsidesperth/</p> </p>
Oct 25, 2018
Episode 113 - Security practice is broken. How can we fix it? Interview with Dr Jodie Siganto @BSidesPer
<p>Interview with Dr Jodie Siganto, a lawyer who accidentally strayed into security about 18 years ago and never been able to get out. Fascinated by what happens at the interface between humans and technology, particularly in the security and data privacy realm. Intrigued by what shapes security practice and our failure to change.</p> <p>Jodie’s proposal is that as information security practitioners we think of ourselves as professionals with a special expertise. But is this perspective real? Or are we more like security brokers negotiating an acceptable outcome with the business? "If we are a profession, then who is shaping that profession? If we are experts, is education producing the right person? By looking at some of these questions, I hope to start a conversation about how we might re-shape security practice to delivery better results for practitioners, their employers and the community more generally."</p> <p class="MsoNormal"></p> <p>Recorded at BSides Perth 2018 which attracted over 300 delegates, including kids and families, to UWA Business School and along with t-shirts, beanies and tool kits, delegates also received a cool and unique handmade conference badge, using a NodeMCU ESP8266 WiFi SoC. Security BSides (commonly referred to as BSides) is a <a title="Hacker convention" href="https://en.wikipedia.org/wiki/Hacker_convention">hacker convention</a>, held amongst a growing eco-system of events in Australia and New Zealand that provide a community driven framework for information security conferences.</p> <p> </p>
Oct 18, 2018
Episode 112 - Interview with the CEO of CyLon at ICE71, Singapore. CyLon is the world’s leading cybersecurity accelerator
<p>We sit down with Anton Opperman, CEO of CyLon at ICE71. CyLon is the world’s leading cybersecurity accelerator. Since launching in London in 2015 CyLon has run several accelerator programmes, successfully accelerating over 50 cybersecurity startups, many of which are now working with major global corporations, governments and world-leading investors. CyLon is working in partnership with Singtel Innov8 and NUS Enterprise to deliver the ICE71 Inspire and ICE71 Accelerate programmes.</p> <p class="MsoNormal">ICE71 ‘Innovation Cybersecurity Ecosystem at Block71’ is the region’s first cybersecurity entrepreneur hub. Founded by Singtel Innov8, the corporate venture capital unit of Singtel, and the National University of Singapore (NUS), through its entrepreneurial arm NUS Enterprise, ICE71 aims to strengthen Singapore’s growing cybersecurity ecosystem by attracting and developing competencies and deep technologies to help mitigate the rapidly increasing cybersecurity risks in the region.</p> <p class="MsoNormal">Supported by the CSA and the IMDA, ICE71 is Singapore’s first integrated cybersecurity entrepreneur hub, supporting and developing early and growth stage cybersecurity entrepreneurs and startups from around the world.run a range of programmes designed to support cybersecurity individuals and startups from idea development to the creation, acceleration and scaling of cybersecurity startups. In addition, through the ICE71 community they will provide startups with go-to-market access, introductions to corporates and channel partners.</p> <p class="MsoNormal">For more information about CyLon please visit <a href="https://www.cylonlab.com/" target="_blank">www.cylonlab.com</a> and for ICE71 visit <a href="https://ice71.sg/">https://ice71.sg/</a></p> <p class="MsoNormal">For the upcoming Collaborated event between ICE71 and Cyber Risk Meetup, November 1 at ICE71 visit <a href="https://www.cyberriskmeetup.com/events/secrets-of-the-hacker-revealed">https://www.cyberriskmeetup.com/events/secrets-of-the-hacker-revealed</a></p> <p> </p>
Oct 16, 2018
Episode 111 - How to land a job in InfoSec with @CyberSecRicki & DevSecOps versus SecDevOps with @_sarahyo
<p>Interview with Ricki Burke and Sarah Young, co-organisers AllSec Meetups in Melbourne and we dive into Ricki’s @BsidesPer Workshop and Sarah’s SecDevSecOpsSec session. </p> <p>Ricki is the Director and Founder of CyberSec People and partners with organisations around ANZ to hire infosec (Cyber Security) professionals. He is embedded in the security community, is active at cons and Meetups and built many friendships along the way. With a passion for supporting people to break into security, he has helped many land their first job in the industry.</p> <p>Ricki's recent articles with the Australian Cyber Security Magazine </p> <ul> <li>I want to be a Hacker – but where do I start? <a style="font-size: 1.17em;" href="https://issuu.com/apsm/docs/acsm_issue_2_2017/24">https://issuu.com/apsm/docs/acsm_issue_2_2017/24</a></li> <li>Cyber Security in 2017 – <a style="font-size: 1.17em;" href="https://issuu.com/apsm/docs/acsm_issue1_2017/42">https://issuu.com/apsm/docs/acsm_issue1_2017/42</a></li> </ul> <p>Sarah is a security architect based in Melbourne, having previously worked in New Zealand, London and various parts of Europe across a range of industry sectors. In her current role, Sarah helps enterprises move their stuff into the cloud securely. She spends most of her spare time eating hipster brunches and high teas.- Sarah's session: “SecDevSecOpsSec: let’s stop throwing around the buzzwords.” With phrases like “DevSecOps” out there, how many of us actually know what this means? We have DevSecOps, SecDevOps, secure pipelines, security toolchains, etc. too often used interchangeably and with no clear “official” definition. In her talk, Sarah sought to distill the exact meanings of each of these and use examples from her own experiences of creating automated security processes to explain how each can be effectively used, and the tools that she has used to do this.</p> <p> </p>
Oct 11, 2018
Episode 110 - The future of Data Centres in an age of robotics, AI, IoT, machine learning and AR/VR, Prof. Greg Sherry
<p>In the last of our Data Centre podcast series with DCD, we conclude in Singapore with Prof. Greg Sherry, General Director/ Professor, DCPRO Development and CEO of VARceti.</p> <p class="MsoNormal">Greg has been involved with the IT Industry for 40 years and has worked in many aspects across the data centre business.Greg has been delivering Data Centre training for many years and was a trainer for the CDCDP classes, the BICSI Data Centre design course, and most recently, the training courses from DCPRO. He is the author of the world’s most widely taught data centre training course, Data Centre Design Awareness, and a contributing editor to several other courses.  Greg has delivered training across the globe on every populated continent, to more than 1000 students in some of the industries’ largest organisations. He is widely recognised as one of the world’s leading data centre design authorities.</p> <p>Recent projects in Russia have included the design supervision and risk management of a 2Mw, Phase 2 build project for an International Colo provider. The review of design and operational procedures for a major Russian Telco. Audit and review of existing facility for International telco and subsequent report detailing future strategy for data centre operations. Audit of Russian DC for one of the world’s largest consultancies.</p> <p>Greg has recently been appointed as a Professor at Plekhanov Russian University for Economics, and teaches a post graduate class in Data Centre design there.</p> <p>Interview recorded at Marina Bay Sands, Singapore on 12 Sept 2018 at <a href="http://dcd.events/conferences/singapore-2018">Data Center Dynamics – DCD South East Asia</a> <a href="https://twitter.com/hashtag/DCDAustralia?src=hash">#DCDSingapore</a></p> <p>For the full series of DCD Data Centre Podcasts visit https://australiancybersecuritymagazine.com.au/data-centre-deep-dive-with-dcdaustralia-dcdsingapore/</p> <p> </p>
Oct 09, 2018
Episode 109 - Cybernomics: Digital Asset Valuation & Cyber Risk Measurement with Dr. Keyun Ruan, Computer Scientist & Author “Digital Forensics”
<p class="MsoNormal">This interview with Dr. Keyun Ruan dives into her research in identifying the value of ‘cyber’ in business, establishing traceability for better risk management, analyzing the attacker’s role in cyber risk and the outlook for the future of cyber risk quantification.</p> <p class="MsoNormal">Dr. Keyun Ruan has worked as a PhD researcher at the Center of Cyber security and Cybercrime Investigation (University College, Dublin) and in cloud forensics at the Cyber Security Research Lab (EADS). She was among the first in the world to work on this emerging area. Professor Ruan has given talks around the world in both academic and industry conferences, including CloudEXPO Europe and Silicon Valley, Cloud Futures held at Microsoft Research Headquarters, Cloud Security Alliance Congress, RSA Conference Europe, Campus Party Europe, the ADFSL Conference on Digital Forensics Security and Law, the International Conference on Digital Forensics and Cyber Crime, the IFIP International Conference on Digital Forensics. Keyun is now Chairperson and CRO of New York based XENSIX Inc, research scientist at University College Dublin, and research partner at EADS. She is an active member of the Cloud Security Alliance, member of the board of Cloud Security Alliance Ireland, and is leading the Cloud Security Alliance Incident Management and Forensics Working Group. She is an active contributor to the NIST Cloud Computing Program, and a Technical Lead of the NIST Cloud Forensics Working Group. She is also a semi-professional artist and holds a diploma in Art and Design from the National College of Art and Design, Ireland.</p> <p>Interview conducted recorded 5 September, 2018 at Cyber Security Asia, Kuala Lumpur, Malaysia <a href="https://cybersecurityasia.tech/">https://cybersecurityasia.tech/</a> – MySecurity Media attended courtesy of Thomvell International <a data-query-source="hashtag_click" href="https://twitter.com/hashtag/CSA2018?src=hash">#<b>CSA2018</b></a></p>
Oct 08, 2018
Episode 108 – “What Your RF Signature Says About You” - insights @BSidesPer with @acyberexpert aka “Stephen”
<p> <p class="MsoNormal">Invisible, inaudible, and ignored, your devices are currently screaming out large amounts of information about you, your habits, your pattern of life to anyone who cares to listen. ‘Stephen’, who hails from the South Pacific and exported to the financial services sector in Singapore, presented at #BSidesPerth to demonstrate how to listen in, what is commonly being broadcast, what can be done with this information, and how you can minimise the risks.</p> <p class="MsoNormal"><b>Interview.References</b></p> <p class="MsoNormal">ACMA Spectrum Plan is available via <a href="https://www.acma.gov.au/theacma/australian-radiofrequency-spectrum-plan-spectrum-planning-acma">https://www.acma.gov.au/theacma/australian-radiofrequency-spectrum-plan-spectrum-planning-acma</a></p> <p class="MsoNormal">Transport For London WiFi pilot original was here (PDF): <a href="http://content.tfl.gov.uk/review-tfl-wifi-pilot.pdf">http://content.tfl.gov.uk/review-tfl-wifi-pilot.pdf</a></p> <p class="MsoNormal">Excerpted page 20 from the report as slide 12: <a href="https://obvi.us/presentation/rf-sig/#s12">https://obvi.us/presentation/rf-sig/#s12</a></p> <p class="MsoNormal">List of places a car had shown up in Singapore: <a href="https://obvi.us/presentation/rf-sig/#s19">https://obvi.us/presentation/rf-sig/#s19</a></p> <p class="MsoNormal">For a link to Stephen’s website visit <a href="https://obvi.us/"> https://obvi.us</a></p> <p class="MsoNormal">Recorded September 15, 2018. <a href="https://twitter.com/hashtag/BSidesPerth?src=hash">#BSidesPerth</a> - for event pics (including the conference badge) - visit <a target="_blank" href="https://www.facebook.com/media/set/?set=a.2022069374480704&amp;type=1&amp;l=a8ebde5166">APSMs Facebook page</a></p> <p class="MsoNormal"><a target="_blank" href="https://www.facebook.com/media/set/?set=a.2022069374480704&amp;type=1&amp;l=a8ebde5166"></a><b>About BSidesPerth</b></p> <p class="MsoNormal"><a target="_blank" href="https://bsidesperth.com.au/">BSides Perth</a> is organised by three mates with a collective 'lot' of years in the InfoSec industry...<a href="https://twitter.com/Dolesification">doles</a> (Alex Dolan), <a href="https://twitter.com/NHardy">nidogski</a> (Nigel Hardy) and <a href="https://twitter.com/pete12601">sneaky</a> (Peter Yorke).</p> <p class="MsoNormal">BSides Perth attracted over 300 delegates, including kids and families, to UWA Business School and along with t-shirts, beanies and tool kits, delegates also received a cool and unique handmade conference badge, using a NodeMCU ESP8266 WiFi SoC.</p> <p class="MsoNormal">Security BSides (commonly referred to as BSides) is a <a title="Hacker convention" href="https://en.wikipedia.org/wiki/Hacker_convention">hacker convention</a>, held amongst a growing eco-system of events in Australia and New Zealand that provide a community driven framework for information security conferences.</p> <p class="MsoNormal">BSides was co-founded by Mike Dahn, Jack Daniel, and Chris Nickerson in 2009. Due to overwhelming number of presentation submissions to Black Hat USA in 2009, the rejected presentations were presented to a smaller group of individuals - these became known as the BSides.</p> </p>
Oct 04, 2018
Episode 107 - Child Cyber Security Ambassador & Child Hacker – Reuben Paul, 12, aka “RAPst4r”, the Founder of CyberShaolin
<p>Following his presentation on stage at Cyber Security Asia, Kuala Lumpur, we sat down with Reuben Paul, our youngest guest and Cyber Security Ambassador, Child Hacker, Black Belt in Shaolin Do Kung Fu, USA Gymnast, Video-gamer &amp; Cyber Ninja. These are some of the growing titles used to describe 12-year-old Reuben Paul aka “RAPst4r”, the Founder of CyberShaolin.</p> <p class="MsoNormal">Reuben was an invited speaker and has delivered over 10 keynotes and over a dozen talks covering various topics ranging from hacking IoT smart toys, Windows OSes, Metasploit, SQL injection, password cracking, hacking mobile devices, malware and social engineering with live demos. He has also been featured at several industry leading security conferences such as (ISC)2 Security Congress, RSA, DerbyCon, Hack In The Box (HITB) HaxPo (Netherlands), Houston Security Conference, BSides Austin, Ground Zero, InfoSec (India), GeekFest Berlin, Secure Poland, Kaspersky Security Analyst Summit, and the International One Conference (Netherlands). He recently shared the stage as a co-keynote speaker with Ms. Glover-Jones, the CIO of the Defense Intelligence Agency in the 2017 Department of Defense Intelligence Information Systems (DoDIIS) worldwide conference. </p> <p class="MsoNormal">His demonstrations of hacking smart toys and talks on “Creating a Safe and Secure Cyber World for kids (by a kid)”, “Developing r00t-kidz: The Future of Cybersecurity” and his debut talk entitled “InfoSec Reuben was featured as a hacker kid in the 15 under 15: rising stars in Cyber Security.</p> <p class="MsoNormal">For more on CyberShaolin visit https://www.cybershaolin.org/</p> <p class="MsoNormal">Interview conducted alongside Reuben's father, Mano Paul and recorded 5 September, 2018 at Cyber Security Asia, Kuala Lumpur, Malaysia <a href="https://cybersecurityasia.tech/">https://cybersecurityasia.tech/</a> - MySecurity Media attended courtesy of Thomvell International <a dir="ltr" class="twitter-hashtag pretty-link js-nav" data-query-source="hashtag_click" href="https://twitter.com/hashtag/CSA2018?src=hash">#CSA2018</a></p> <p> </p>
Oct 02, 2018
Episode 106 - #BSidesPerth 2018 – Organiser insights from doles, nidogski and sneaky
<p><a target="_blank" href="https://bsidesperth.com.au/">BSides Perth</a> is organised by three mates with a collective 'lot' of years in the InfoSec industry… <a href="https://twitter.com/Dolesification">doles</a> (Alex Dolan), <a href="https://twitter.com/NHardy">nidogski</a> (Nigel Hardy) and <a href="https://twitter.com/pete12601">sneaky</a> (Peter Yorke) – here’s their perspective on BSides and the massive effort required to put a community driven conference together.</p> <p class="MsoNormal">BSides Perth attracted over 300 delegates, including kids and families, to UWA Business School and along with t-shirts, beanies and tool kits, delegates also received a cool and unique handmade conference badge, using a NodeMCU ESP8266 WiFi SoC.</p> <p class="MsoNormal">Security BSides (commonly referred to as BSides) is a <a title="Hacker convention" href="https://en.wikipedia.org/wiki/Hacker_convention">hacker convention</a>, held amongst a growing eco-system of events in Australia and New Zealand that provide a community driven framework for information security conferences. </p> <p class="MsoNormal">BSides was co-founded by Mike Dahn, Jack Daniel, and Chris Nickerson in 2009. Due to overwhelming number of presentation submissions to Black Hat USA in 2009, the rejected presentations were presented to a smaller group of individuals - these became known as the BSides. </p> <p class="MsoNormal">Recorded September 15, 2018. <a dir="ltr" class="twitter-hashtag pretty-link js-nav" data-query-source="hashtag_click" href="https://twitter.com/hashtag/BSidesPerth?src=hash">#BSidesPerth</a> - for event pics (including the conference badge) - visit <a href="https://www.facebook.com/media/set/?set=a.2022069374480704&amp;type=1&amp;l=a8ebde5166" target="_blank">APSMs Facebook page</a></p> <p class="MsoNormal"> </p> <p> </p>
Oct 02, 2018
Episode 105 – Business Drivers & Data Centres, with Stephen Worn, CTO & CEO DCD North America
<p>Based in New York, Stephen Worn is the CEO of North America, Managing Director of Asia Pacific, as well as Global CTO for Data Centre Dynamics. This interview delves into data centre trends in Australia, Asia Pacific region and globally, as well as how technology and digital transformation is influencing and driving business opportunity and risk.</p> <p>Mr. Worn has been involved with industry-leading enterprises and clients around the world for over 25 years as an Industrial FMS and ICT Network and Facilities Engineer; with over eight years in Asia, across the Americas and again back on a pan-European level.</p> <p>Mr. Worn was the Head of Technology Services for Dimension Data UK, where he was also their acting Practice Manager for Data Centres and Intelligent Buildings. Stephen has held senior management roles in Nortel Networks as their EMEA Senior Director of Datacentres, at Japan's Nippon Suisan International, China's National Center for Industry and Technology, as well as with the Center for Special Economic Zones.</p> <p>Mr. Worn has supported Data Center Dynamics since its first conference as Chief Technical Advisor and Guest Conference Chairman. Mr. Worn holds two Masters Degrees. </p> <p>Interview recorded at ICC on 23 August 2018 at <a href="http://dcd.events/conferences/sydney-2018">Data Center Dynamics – DCD Australia, Sydney</a> <a data-query-source="hashtag_click" href="https://twitter.com/hashtag/DCDAustralia?src=hash">#DCDAustralia</a></p> <p>For the full series of DCD Data Centre Podcasts visit https://australiancybersecuritymagazine.com.au/data-centre-deep-dive-with-dcdaustralia-dcdsingapore/</p> <p> </p>
Sep 26, 2018
Episode 104 - A Cyber Murder Mystery? A unique approach to raising awareness by #WomeninCyber at Blue Phish
<p>On a multi-faceted trip to Singapore, we took the opportunity to drop into JustCo and speak with Nina Bual and Shaily Shah of start-up, Blue Phish.</p> <p class="MsoNormal">These two dynamic individuals and #WomeninCyber, co-founded Blue Phish to work predominantly in South East Asia, with reputable organisations to raise cyber maturity in an engaging and interactive manner. Blue Phish supports a number of organisations in reducing their cyber risk through awareness programs and also focuses on educational gaps to prepare children, parents and teachers for a digital future. Together, Nina and Shaily have trained thousands of children, teachers and parents as well as over 100 SMEs, including developed some unique awareness approaches, even a Murder Mystery. If you’re new or even just interested in cyber security and cyber security awareness, you will enjoy this interview.</p> <p class="MsoNormal">Recorded on September 11 at Just Co, Shenton Way, Singapore.</p> <p class="MsoNormal">For more information visit https://bluephish.org/</p> <p class="MsoNormal">Reference to Julie Inman-Grant is Australia's E-Safety Commissioner -  https://esafety.gov.au/</p> <p> </p>
Sep 24, 2018
Episode 103 – World-renowned cyber security expert, “The Ethical Hacker” – Oliver Stone’s cybersecurity adviser on “Snowden” and CEO of Estonia startup Seguru.io
<p>This is a broad interview with Ralph Echemendia, world-renowned cyber security expert, known internationally by his alter ego “The Ethical Hacker.” For over 20 years, Ralph has delivered training on hacking and other security information to corporations including the US Marine Corps, NASA, Google, Microsoft, Oracle, AMEX, Intel, Boeing, Symantec, and IBM.</p> <p class="MsoNormal">His portfolio of work and reputation as a leading professional across several industries has landed him the credibility to make appearances on CNN, Fox News, USA Today, and Forbes, to name a few. Now on the Cyber Security Weekly Podcast.</p> <p class="MsoNormal">Ralph took his talents to Hollywood, California and has worked with award-winning Director Oliver Stone as a technical supervisor on films such as “Savages” and “Snowden” as well as as other projects such as the film “Nerve” and award-winning TV series Mr. Robot.He has now joined forces with some of the music industry and Hollywood’s most influential names and is working on cutting edge technology for consumer cyber security. Ralph has also been a featured speaker/panelist/keynote at events such as DigitalK in Bulgaria, WoHiT in Barcelona, The Customer Contact Expo in London, Georgetown Law University Cyber Event, WHiNN in Denmark, Raytheon’s Public Sector Cybersecurity Summit in Washington, DC, Austin’s South by Southwest ® (SXSW ®), the LA Film Festival, the Tribeca Film Festival, Pioneers Festival 17  in Vienna, Digital Odense, Web Summit and Collision to name a few. His jaw dropping “Hacking Hollywood” appearance has been presented at Creative Artists Agency, the Digital Entertainment World Expo, the Content Protection &amp; Piracy Summit, as well as the Anti-Piracy and Content Protection Summit.</p> <p class="MsoNormal">Seguru.io is based in Tallin, Estonia and provides Encryption, Alerts, Resilience, Thinking Machine/AI, Adaptive Technology, Secure Cloud-Based protection - www.seguru.io - this discussion includes Estonia's approach to an open, digital economy, transparent government and the implications on privacy and security.</p> <p>Recorded 5 September, 2018 at Cyber Security Asia, Kuala Lumpur Malaysia <a href="https://cybersecurityasia.tech/">https://cybersecurityasia.tech/</a> - MySecurity Media attended courtesy of Thomvell International</p> <p> </p>
Sep 23, 2018
Episode 102 - Achieving sustainable data centres and the next Moore’s Law trends, with Prof. Ian Bitterlin, Leeds University
<p> </p> <p class="MsoNormal">Presenting at DCD Australia in Sydney, Ian Bitterlin discusses the developments in data centre design, energy use and heat generation and increasing adaptability of Moore’s Law type technology trends with the transition from silicon based chips to graphene.</p> <p class="MsoNormal">We discuss the key aspects of data centre transition with removing comatosed, legacy servers, increasing equipment utilisation, frequently refreshing ICT hardware and adapting to technology leaps possible with graphine and photonics. References mentioned during the discussion are provided below.</p> <p class="MsoNormal">Professor Bitterlin has a BA in mathematics, a first-class BSc(Hons) in technology, a postgraduate diploma in design &amp; innovation and an honorary doctorate in management. Ian’s career has been varied and extensive. Seven years in engineering with Schindler Lifts led to 14 years with Mannesmann Demag (rotating machines and variable speed drives) – during which time he wrote numerous technical papers on the subject of variable speed drive systems in the material handling industry, and presented them at conferences across the globe. By 1990 he had reached the position of Divisional Manager. A move to Anton Piller (UPS) – where he served as UK Director for 7 years – was the start of Ian's long involvement within the critical power and cooling industry and led to several posts within the Emerson organisation, culminating in Managing Director of Emerson Network Power. Since 2001, appointments have included VP EMEA and AsiaPac for Active Power Inc, International Sales Director for Chloride and CTO of Prism Power Ltd – the exclusive provider of dynamic-rotary UPS systems manufactured by KST of Belgium. An active speaker and author, his technical papers on critical power and cooling have been presented at numerous European conferences and he has made conference presentations and keynote speeches across the globe. Ian is a co-author of 2 chapters in the CIBSE publication, 'Guide K: Electricity in Buildings' – ‘UPS Systems’ and ‘HV Switchgear’. Ian is a Member of several UK Engineering Institutions, including CIBSE, IET, the British Computer Society and the British Institute of Facility Managers, as well as being a member of AFCOM and the IEEE.</p> <p class="MsoNormal">REFERENCE LINKS</p> <p class="MsoNormal"><a href="http://spec.org/">http://spec.org/</a> Standard Performance Evaluation Corporation (SPEC) is a non-profit corporation formed to establish, maintain and endorse standardized benchmarks and tools to evaluate performance and energy efficiency for the newest generation of computing systems</p> <p class="MsoNormal">Futurist Ray Kurzweil <a href="https://en.wikipedia.org/wiki/Ray_Kurzweil">https://en.wikipedia.org/wiki/Ray_Kurzweil</a></p> <p class="MsoNormal">Graphene is simply one atomic layer of graphite - a layer of sp2 bonded carbon atoms arranged in a hexagonal or honeycomb lattice. There are no operational graphite mines in Australia. In 2017, China was the largest graphite-mining nation by a wide margin, followed by India and Brazil. Reference <a href="https://investingnews.com/daily/resource-investing/critical-metals-investing/graphite-investing/top-graphite-producing-countries-china-india-brazil-canada/">https://investingnews.com/daily/resource-investing/critical-metals-investing/graphite-investing/top-graphite-producing-countries-china-india-brazil-canada/</a></p> <p class="MsoNormal">Chris mentions Lithium mining is active in Western Australia – Reference <a href="http://www.abc.net.au/news/2018-05-04/wa-in-box-seat-lithium-boom-new-refinery-kwinana/9728552">http://www.abc.net.au/news/2018-05-04/wa-in-box-seat-lithium-boom-new-refinery-kwinana/9728552</a></p> <p class="MsoNormal">Interview recorded at ICC on 23 August 2018 at <a href="http://dcd.events/conferences/sydney-2018">Data Center Dynamics – DCD Australia, Sydney</a> <a href="https://twitter.com/hashtag/DCDAustralia?src=hash">#DCDAustralia</a></p> <p class="MsoNormal">ALSO stay tuned for a subsequent interview with Greg Sherry, CEO of Varceti.com recorded at #DCDSingapore where we continue the discussion on leading and emerging DC design.</p> <p class="MsoNormal">For the full series of DCD Data Centre Podcasts visit https://australiancybersecuritymagazine.com.au/data-centre-deep-dive-with-dcdaustralia-dcdsingapore/</p> <p> </p>
Sep 21, 2018
Episode 101 - Malaysia’s perspective on what is driving security agendas with CEO, Cybersecurity Malaysia, Dato’ Dr. Amirudin Abdul Wahab
<p>Dato’ Dr. Amirudin Abdul Wahab provided the welcoming address to Cyber Security Asia 2018 and outlines how cybersecurity affects the security, stability and progress of country nations. Nations, organisations and indeed society at large have to realign quickly to the new world order to ensure their survival and growth this century.</p> <p>Following elections in Malaysia, the country is restructuring the cyber security framework and we also discuss Cybersecurity Malaysia’s CyberDEF program which is a solution for detection, eradication and forensic investigation for organisations to take more proactive and responsive steps to eradicate and remediate security threats and vulnerabilities.</p> <p>Recorded 4 September, 2018 at Cyber Security Asia, Kuala Lumpur Malaysia <a href="https://cybersecurityasia.tech/">https://cybersecurityasia.tech/</a> - MySecurity Media attended courtesy of Thomvell International</p>
Sep 21, 2018
Episode 100 – Intrepreneurship, SCADA systems and maritime supply chains
<p>Ken Soh, CEO of Athena Dynamics Pte Ltd speaks about his journey into Intrepreneurship, shipping and maritime security frameworks, SCADA Systems and the inspiration sourced from Israel.</p> <p class="MsoNormal"></p> <p class="MsoNormal">As CIO of BH Global Corporation, Ken’s journey got underway when the company funded a study week in Israel and he returned to Singapore as an Intrepreneur, the CEO of Athene Dynamics and servicing BH Global Corporation’s supply chain customers. Ken effectively turned the IT department into a profit centre and software distributor. </p> <p class="MsoNormal">With consideration to shipping and maritime security trends and supply chain security, we then dive into two of the company’s software products: </p> <p class="MsoNormal"><a title="SASA SOFTWARE" href="https://athenadynamics.com/solution/sasa-software">Sasa Software</a> is a 9-layer, ultra-deep-scanning anti-malware and sanitisation (CDR) solution augmentable by uni-directional data diodes with Wintel based proxies; and </p> <p class="MsoNormal"><a title="ICS2" href="https://athenadynamics.com/solution/ics2">ICS2</a>, a SCADA monitoring platform that specialises in real-time behavioural analytics of OPC data passively extracted from control systems.</p> <p class="MsoNormal">Recorded at ICE71, Singapore on September 7, 2018. ICE71 ‘Innovation Cybersecurity Ecosystem at Block71’ is the region’s first cybersecurity entrepreneur hub. Founded by Singtel Innov8, the corporate venture capital unit of Singtel, and the National University of Singapore (NUS), through its entrepreneurial arm NUS Enterprise.</p> <p class="MsoNormal">Well done to Ken for being the guest on our 100th show! </p> <p> </p>
Sep 19, 2018
Episode 99 – Is this the McDonalds of the DC industry? Meet Digital Realty, the world's largest full scale data centre provider
<p> </p> <p class="MsoNormal">As part of our Data Centre #DCD series of interviews, we speak to Rod Glover, Director - Data Centre Operations, Australia and Omer Wilson, Head of Marketing APAC at Digital Realty. </p> <p class="MsoNormal">Digital Realty is the world's largest full scale data centre provider offering colocation, wholesale deployments, interconnection and cloud services. Cloud providers are growing rapidly and remain the fastest growing in the DC market. Geographically distributed across North America, Europe and APAC, these customers need to spread their DC assets quickly. With a unique business model where Digital Realty source and purchase the land and then lease (the McDonalds of the DC industry?), Digital Realty is a real estate investment trust and also sources electricity with hedges on the energy market rather than fixed terms. This facilitates a range of advantages including PUE (Power Utilisation Efficiency), measured by the total power divided by the IT load, with a 1:3 ratio as a DC design target.</p> <p class="MsoNormal">With facilities based in Singapore, Hong Kong, Japan and Australia (Melbourne, Sydney), the APAC region is the fastest customer growth region across the world.</p> <p class="MsoNormal">If you like tech business model discussions, you'll enjoy this one!</p> <p class="MsoNormal">For more information visit <a href="https://www.digitalrealty.com">https://www.digitalrealty.com</a></p> <p class="MsoNormal">Interview recorded at ICC on 23 August 2018 at <a href="http://dcd.events/conferences/sydney-2018">Data Center Dynamics – DCD Australia, Sydney</a> <a href="https://twitter.com/hashtag/DCDAustralia?src=hash" data-query-source="hashtag_click">#DCDAustralia</a></p> <p> </p>
Sep 13, 2018