by Johan Fantenberg | Jun 23, 2025 | Supply Chain
In the modern global economy, supply chains are no longer just physical networks but have become vast digital ecosystems. At the heart of these systems lies a challenge that is rapidly gaining prominence among cybersecurity professionals: third-party digital access....
by Christopher Hills | Jun 23, 2025 | Identity & Access Management
In an era where cyberattacks are growing in scale and sophistication, digital identities have emerged as the new battleground. Once the exclusive domain of Identity and Access Management (IAM) teams, identity security is now a core cybersecurity and business...
by Jay S. Goodman | Jun 20, 2025 | Leadership, Secure Communications, Security Operations
Picture this scenario. You’re a government leader or a critical infrastructure operator. Suddenly, your communication systems go dark. The network has been breached, and sensitive information is exposed. Foreign adversaries are listening, decisions are delayed, and...
by Zak Menegazzi | Jun 18, 2025 | Exposure Management
With the new financial year approaching, Australian organisations face a pressing imperative to strengthen their cyber defences and heighten their vigilance against cyberwarfare. Modern cyberwarfare is marked by a surge in state-sponsored attacks, the weaponisation of...
by Matias Madou | Jun 18, 2025 | Artificial Intelligence
The rapid adoption of artificial intelligence (AI) coding assistants has transformed software development, offering much-needed relief for developers grappling with growing workloads and tight delivery timelines. These generative AI tools have been widely embraced for...
by Gareth Cox | Jun 18, 2025 | Exposure Management
In an increasingly digital world, Australian businesses are more vulnerable than ever to one of the most dangerous yet underestimated cybersecurity risks: insider threats. These threats, which originate from within an organisation, pose a unique challenge as they...
by Pamela Hornilla | Jun 17, 2025 | Leadership, Risk Management
In Episode 4 of the DevSecOops podcast, hosts Tom Walker and Scott Fletcher discussed what’s really dragging security down in modern organisations. And spoiler, it’s not the hackers. If you’re someone in tech, security, or just trying to make sense of how to run a...
by Pascal Geenens | Jun 12, 2025 | Artificial Intelligence
The recent release of DeepSeek-R1 by the Chinese startup DeepSeek has garnered a lot of interest and could spark a new wave of innovation, potentially rebalancing the state of AI supremacy between the major competitors on the global stage. By introducing unique...
by Pamela Hornilla | Jun 12, 2025 | Leadership
In Episode 2 of the DevSecOops podcast, hosts Tom Walker, James Vincent, and Scott Fletcher explored one of the biggest yet most overlooked challenges in organisations today: how to make the right decisions, especially when business, technology, and security...
by Jason Merrick | Jun 11, 2025 | Identity & Access Management
The identity security game has changed, and we’ve made it easier for attackers to win. Not because they’re smarter or more sophisticated (though many are), but because we’ve handed them the keys. Through unchecked identity sprawl, we’ve given cybercriminals a golden...
by Sunny Rao | Jun 6, 2025 | Artificial Intelligence
Software has become the undisputed driver of business today. As the reliance on software has grown, so have the moving parts needed to make it, especially amid the rise of generative artificial intelligence (GenAI). As a result, software development has become a...
by Peter Graves | Jun 5, 2025 | Artificial Intelligence
Australia’s manufacturing sector is integral to the country’s economic framework, employing over 850,000 individuals and contributing approximately 6% to the national GDP.. However, challenges such as supply chain disruptions alongside workforce shortages, escalating...
by Pamela Hornilla | Jun 5, 2025 | Cloud Security, Critical Infrastructure
Cordant’s DevSecOops podcast brings together trio Tom, Scott, and James for what turned into a timely, thoughtful discussion about the intersections of cloud technology, operational technology (OT), and critical infrastructure. With recent news out of the US and...
by Rohit Nayak | Jun 5, 2025 | Artificial Intelligence
As artificial intelligence (AI) continues to revolutionise industries worldwide, its rapid advancement brings both vast opportunities and significant responsibilities. AI has the potential to transform sectors like healthcare, finance, manufacturing, and education,...
by Pamela Hornilla | Jun 4, 2025 | Risk Management
Recently, on DevSecOops podcast; Hosts Tom Walker, James Vincent, and Scott Fletcher bring on a special guest, Natalie Haslam, an industry veteran with 25 years of project management experience within traditional IT, application development, and more recently,...
by Pamela Hornilla | Jun 4, 2025 | Cloud Security
DevSecOops podcast hosts Tom Walker, James Vincent, and Scott Fletcher debate which cloud platform reigns supreme. Choosing between major cloud providers can get overwhelming. The three Co-Hosts set aside their usual neutrality to champion AWS (Amazon Web Services),...
by Bitdefender | Jun 4, 2025 | Exposure Management, Security Operations, Threat Intelligence
This article shares initial findings from internal Bitdefender Labs research into Living off the Land (LOTL) techniques. Our team at Bitdefender Labs, comprised of hundreds of security researchers with close ties to academia, conducted this analysis as foundational...
by Pamela Hornilla | Jun 2, 2025 | Leadership
Serving on a corporate board is often seen as the pinnacle of a professional career, the natural, coveted ‘next step’ after decades of climbing the corporate ladder. For many, it is the picture of executives in sharp suits, convening in a high-rise building, and...
by Scott Bridgen | May 30, 2025 | Leadership, Risk Management
Introduction The nature of corporate risk in Australia is evolving rapidly at a strategic, reputational, and liability level. As the next five years shape up to be even more disruptive in the world of risk management, Australian boards need to begin paying swift...
by Johan Fantenberg | May 29, 2025 | Artificial Intelligence
Australia’s financial services sector is confronting a fast-emerging and deeply insidious threat: deepfakes. Once considered digital curiosities or entertainment gimmicks, deepfakes are now formidable tools in the arsenal of cybercriminals. They are synthetic media...
by Gary Salman | May 29, 2025 | Artificial Intelligence, Critical Infrastructure
Artificial intelligence (AI) is revolutionizing healthcare by streamlining patient management and optimizing operations, making processes faster and more efficient. However, as practices adopt these advancements, cybercriminals are leveraging AI to exploit...
by Ben Hartwig | May 26, 2025 | Artificial Intelligence, Identity & Access Management, Risk Management
Companies maintain internal databases for sensitive information. However, sometimes employees want to take work home or believe it is easier to save files on their systems. These seemingly minor and understandable oversights introduce a new and growing threat to all...
by Helen Masters | May 23, 2025 | Artificial Intelligence
As I travel around the Asia-Pacific and Japan region and meet with Smartsheet customers and partners, I’ve seen firsthand the impact of our AI-powered platform on hundreds of thousands of users. Their creativity and passion for the platform makes me enthusiastic for...
by Stephen Gillies | May 22, 2025 | Exposure Management
While compliance ensures steady improvements to application security, the cadence of upgrades is not enough to meet best practice or evolving customer expectations. Internet-based applications might run the digital world, but their security is an ever-present concern,...
by John Penn | May 20, 2025 | Compliance & Legal, Cyber Resilience, Leadership
Introduction The rapidly evolving cyber-risk landscape sees a cyber attack every six minutes in Australia, with a new wave of threats enabled by AI.1 The ability to manage cyber risks whilst at the same time delivering technological transformation places CISOs and...
by Pamela Hornilla | May 19, 2025 | Artificial Intelligence, Cyber Resilience, Governance & Risk, Risk Management
Strategic advisor at Semperis, Simon Hodgkinson, discussed the ongoing state-sponsored cyberattacks, particularly in Australia. With decades of experience as a cybersecurity leader in software, financial services, and energy industry, Hodgkinson shared valuable...
by Sam Salehi | May 7, 2025 | Risk Management
This Global Cybersecurity Week is a timely reminder that cyber risk is no longer a technical issue – it’s a business imperative. As threat actors move faster and AI amplifies the speed and precision of attacks, organisations must evolve how they manage and reduce...
by Olly Stimpson | May 5, 2025 | Security Awareness
As the boundaries between our personal and professional lives continue to blur, World Password Day is a timely reminder that this convergence extends to how we manage passwords. The human element remains a well-known challenge for security and identity professionals....
by Bitdefender | May 1, 2025 | Personal Security, Security Awareness, Threat Intelligence
Bitdefender researchers have uncovered a surge in subscription scams, both in scale and sophistication, spurred by a massive campaign involving hundreds of fraudulent websites. What sets this campaign apart is the significant investment cybercriminals have undertaken...
by Dr. Renee Burton | Apr 29, 2025 | ANZ
A $ 945 million – that is how much money Australian consumers reported losing to investment scams in 2024. Often victims are only trying to create financial security and build a failsafe for the future. Instead, they are manipulated, defrauded, and left more...
by Matias Madou | Apr 22, 2025 | Application Security, Cyber Resilience, Security Operations
Introduction With high-profile cyberattacks occurring around the world at an alarming rate, software developers are focusing on using software security models that can guide their organisations toward embedding secure development best practices. Essentially,...
by Scott Ellis | Apr 22, 2025 | Application Security, Banking & Finance, Network Security
As digital banking, fintech innovations, and mobile transactions continue to reshape the global financial landscape, cybersecurity threats have become increasingly sophisticated. The financial sector, being the backbone of the global economy, is a prime target for...
by Sanket Sharma | Apr 17, 2025 | Crisis Management, Data Management, Digital Forensics
Hey guys, I’m sn0x — a cybersecurity researcher, bug hunter, and security enthusiast. I hold multiple certifications, including CNSP, EWPTXv2, CEH v11–12, GRC, RHCSA, and Cisco Cyber Threat Management. I’ve been ranked #1 in India and #2 globally on TryHackMe, secured...
by Andy Milburn | Apr 16, 2025 | Compliance & Legal, Crisis Management, Data Management, Risk Management, Security Operations
In today’s digital-first economy, data can be both a powerful asset and a significant liability. Companies that proactively manage their data can achieve multiple positive business outcomes such as making optimal use of their storage infrastructure while...
by Ionut Baltariu | Apr 10, 2025 | Personal Security, Reports & Predictions, Security Awareness, Threat Intelligence
In 2024 and continuing into 2025, social media platforms were prime targets for cybercriminals, with content creators facing the brunt of the malicious attacks, including a surge in account takeovers, malicious live streams, and sophisticated phishing campaigns....
by James Tennant | Apr 9, 2025 | Banking & Finance, Leadership
Opening Remarks Sadly, it has become an undeniable reality that the traditional boundaries between conventional warfare and economic statecraft are rapidly dissolving. Cyber security and financial warfare have evolved into critical instruments of geopolitical...
by Jason Baden | Apr 9, 2025 | Cloud Security, Leadership, Security Awareness
Cloud environments are a notorious ransomware attack hot spot. It’s a calculated strategy on the part of the cybercriminals. As the old adage goes, ‘follow the money’, and that’s exactly what they’re doing. Predictions suggest cloud infrastructure spend will reach...
by Scott Magill | Apr 8, 2025 | Cloud Security
Overview The cloud security landscape is facing a seismic shift. With Google’s recent acquisition of Wiz, one of the industry’s most prominent cloud security providers, many in the industry are considering the implications of cloud providers also serving as vendors....
by Matias Madou | Apr 4, 2025 | Cyber Resilience
Governments worldwide, from the UK to Australia, have set ambitious goals to enhance software security by 2030, particularly within critical infrastructure. However, achieving a secure-by-design (SBD) approach is not merely a matter of deploying advanced security...
by Karissa Breen | Mar 31, 2025 | Artificial Intelligence, Digital Forensics, Physical Security, Security Operations
Introduction The Australian Federal Police (AFP) shared at the Microsoft AI Tour 2024, how artificial intelligence (AI) is remoulding crime prevention, particularly in handling large amounts of data and countering cyber threats. Ben Lamont, Chief Data Officer at AFP,...
by David Wiseman | Mar 31, 2025 | Government & Policy, Secure Communications
The Eroding Trust in Consumer Messaging Apps Consumer-grade messaging apps like Signal, WhatsApp and Telegram offer basic end-to-end encryption, effectively securing the content of messages. However, encryption alone is just one piece of a much larger secure...
by Bitdefender | Mar 27, 2025 | Reports & Predictions, Security Operations, Threat Intelligence
Introduction This research, conducted by Bitdefender Labs, presents the first documented analysis of a ransomware campaign attributed to the RedCurl group (also known as Earth Kapre or Red Wolf). RedCurl has historically maintained a low profile, relying heavily on...
by Scott Hesford | Mar 27, 2025 | Identity & Access Management, Security Operations
Introduction Cybersecurity is commonly considered to involve users or people as a key part of the problem, and more than that, it’s an ‘everyone’ problem. Everyone has both a stake and role to play in securing an organisation, having mindset and awareness, and...
by Richard Seiersen | Mar 27, 2025 | Artificial Intelligence, Innovation
The increasing use of AI in both defensive and offensive cyber strategies is prompting enterprises to explore new security solutions. However, as the French writer Alphonse Karr once said, “The more things change, the more they stay the same.” The core question for...
by Peter Philipp | Mar 24, 2025 | Government & Policy, Personal Security, Security Awareness
Introduction Australia’s parliamentary elections are coming under increasing pressure due to the increasing amount of misinformation and disinformation being shared on social media platforms. People share content that is intentionally misleading or not based in fact....
by Karissa Breen | Mar 24, 2025 | Application Security, Artificial Intelligence, Risk Management, Security Operations
Overview Microsoft’s long-standing Executive, Bret Arsenault, Corporate Vice President and Chief Cybersecurity advisor at Microsoft, detailed Microsoft’s Secure Future Initiative (SFI) – their strategic approach to addressing emerging cyber threats and managing...
by Sam Mackenzie | Mar 20, 2025 | Critical Infrastructure, Leadership, Reports & Predictions
Why Cyber-Physical Security Must Be a Leadership Priority Australia’s critical infrastructure faces escalating cyber-physical threats, with adversaries targeting industrial control systems, operational technology (OT) and critical medical services. Security...
by Karissa Breen | Mar 19, 2025 | Artificial Intelligence, Governance & Risk, Security Operations
Securing AI isn’t just about defending against cyber threats – it’s about establishing governance frameworks that ensure AI is used responsibly. With AI adoption accelerating, organisations are needing to align leadership, compliance teams, and IT security to...
