Cyber and Privacy Update 5 Apr 2019
Friday 5 April 2019
Company sues worker who fell for email scam
An office worker who transferred her employer's cash to an online fraudster allegedly ignored a warning telling her she was falling victim to a scam. Ms Bremner is managing director of Glasgow firm Peebles Media Group, which is suing Mrs Reilly at the Court of Session in Edinburgh. The company is claiming £107,984 from the former employee - the sum outstanding after the bank refunded more than £85,000 of the almost £200,000 stolen.
Click here for article: https://bbc.in/2YMknEF
Millions of customers' data accessed in second Toyota hack
Building on from Toyota Australia’s most recent reported attack, auto giant Toyota has apologised to customers after a large data breach at its Tokyo area sales network was discovered on March 21 Japanese time. Toyota said unauthorised network access to a server used by sales subsidiaries may have leaked up to 3.1 million pieces of customer data outside the company.
Click here for article: https://bit.ly/2UkJJuB
Government puts its outsourced data handlers on notice
In a move likely to make its way into the private sector, data centre and managed services providers that handle government data will be subject to more stringent assessment under a new strategy released by the Digital Transformation Agency. The intention here is to give agencies and industry the “confidence” that hosting arrangements in each part of what is often a complex ecosystem of technology services meet government criteria.
Click here for article: https://bit.ly/2WRhj8j
Tesla car hacked at Pwn2Own contest
A team of security researchers has hacked a Tesla Model 3 car on the last day of the Pwn2Own 2019 hacking contest that was held this week in Vancouver, Canada. Team Fluoroacetate hacked the Tesla car via its browser. They used a JIT bug in the browser renderer process to execute code on the car's firmware and show a message on its entertainment system. AN interesting reminder of the vulnerabilities that IT and OT can present.
Click here for article: https://zd.net/2UoWSmk
Government bankrolls IT security upgrades ahead of election
The federal government will spend an undisclosed wad of cash to address persistent cyber security concerns against some of the nation's most critical systems ahead of the 2019 election. Budget documents also reveal the creation of new teams within the Australian Cyber Security Centre to mitigate cyber threats that agencies may face. It comes in the wake of a security breach against Parliament House's computing network in February by a suspected state-based actor.
Click here for article: https://bit.ly/2UFqviH