shutterstock_490960141-1

Industry News: ESG5

      ANZ CIOs See Cybersecurity as Top Priority for 2025

      2024-09-10

      CSO Online: Managing cybersecurity and other technology risks will be top of mind for CIOs in 2025 across Australia and New Zealand (ANZ), with 82% of 109 respondents saying it is a key priority for next year, according to Gartner.

      Read more...

      ASIC Taking Down Average of 20 Scam Websites a Day

      2024-08-18

      The Guardian: More than 7,300 websites have been taken down in the first year of operation of the Australian Securities and Investment Commission’s service targeting investment scams, the regulator has revealed.

      Read more...

      Know Your Breach: MediSecure

      The Target: MediSecure, an Australian electronic prescription provider.

      The Take: The impacted data included personal information including full names, titles, dates of birth, gender, email addresses, phone numbers, and individual healthcare identifiers (IHI).

      The Vector: An early forensic investigation by the company into the relevant impact of the incident indicated that 6.5TB of data stored on a database server was likely exfiltrated by a malicious third-party actor, although, encrypted servers couldn’t be examined for further details.

      This breach is critical reminder that zero-day exploits do happen, and furthermore that patching software in a timely, effective manner is a key component of ensuring customer data is protected. Ensuring third-party vendors are deploying patches and fixes in accordance with a firm’s cybersecurity policy is an important step in an overall robust security posture.

      Read more...

      APRA Clarifies Expectations on Cyber Security and Adequacy of Backups

      2024-06-03

      Australian Prudential Regulation Authority: The Australian Prudential Regulation Authority (APRA) has written to all APRA-regulated entities emphasising the critical role of data backups in cyber resilience. 

      Read more...

      Aussie Software Firm Iress Flags Data Breach At Third-Party Platform

      2024-05-12

      Yahoo News: Australia's Iress Ltd over the weekend detected and contained an unauthorized access of the firm's space on a third-party platform which is used to manage its pre-production software code, the financial software firm said.

      Read more...

      Super Funds Urge Against Escalating Minor Cyber Incidents To APRA

      2024-03-07

      Financial Newswire: While at least one industry superannuation fund continues to deal with APRA over a cyber-security incident a year ago, the Association of Superannuation Funds of Australia (ASFA) has made clear to the Government that its member funds do not want minor security incidents being automatically escalated to APRA.

      Read more...

      Super Funds Advised To Come Clean On Cyber Breaches

      2023-12-13

      Financial Newswire: Less than a week after the Australian Prudential Regulation Authority (APRA) imposed additional license conditions on NGS Super over a cyber breach, a new white paper is arguing that managing communications to members is key to minimizing reputational damage.

      Read more...

      Australia Unveils Cybersecurity Ramp Up After Port Cyberattack

      2023-11-21

      Yahoo Finance: Australia will undertake an economy-wide revamp of its cybersecurity protections including revised data laws, mandatory reporting and a new nationwide cyber council in response to several significant hacks targeting businesses and infrastructure over the past year.

      Read more...

      More Than Half of ASIC Regulated Organizations Can’t Protect Confidential Information

      2023-11-12

      CSO: A cybersecurity self-assessment of 697 Australian organizations revealed 58% have limited or no capability to protect confidential information adequately.

      Read more...

      Microsoft to Help Australia’s Cyber Spies Amid $5 Billion Investment in Cloud Computing

      2023-10-23

      The Guardian: Microsoft says it will invest an additional $5 billion in Australia over the next two years to expand hyperscale cloud computing capacity while collaborating with the Australian Signals Directorate (ASD) to boost domestic protection from cyber threats.

      Read more...

      About Castle Hall Diligence

      Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →

      Subscribe to Cyber Updates