Tag: cybersecurity

Posted on

Talking the Ashley Madison hack on ABC Gold Coast

ABC logoThe Ashley Madison hack returned to the news this week, because the 30-day deadline given by Impact Team, the hacker(s) who claimed responsibility, expired, and the site’s data started being dumped onto the internet.

While I’d spoken about this before on ABC 936 Hobart, this week I spoke about the then-latest developments on Friday with ABC Gold Coast. Here’s the full conversation with morning presenter Nicole Dyer.

The site I mentioned at the end, where you can check whether your email address appears in the Ashley Madison data dump, or in many of the larger data breaches of recent years, is haveibeenpwned.com, run by Australian security researcher Troy Hunt. Use it.

Podcast: Play in new window | Download (7.0MB)

The audio is of course ©2015 Australian Broadcasting Corporation.

Posted on

Weekly Wrap 269: Winning, mostly, with three kinds of fire

The Final Redoubt: click to embiggenMy week of Monday 27 July to Sunday 2 August 2015 represented a remarkable turnaround — perhaps the turnaround that I’d been detecting in the winds since June. And then there’s the bushfire. It’s all so complicated!

Why? It was a full week with a properly-working computer — a week spent in a house with a properly-working kitchen, heating, and inspiring view — and that brought back some of the clarity of thought which I’ve been sorely lacking. I got plenty done, the most important in many ways being the launch — finally! — of The 9pm Urgent Hardware Refresh.

I was very pleased when people started contributing to this crowdfunding campaign just as soon as it was launched. I’m even more pleased to report that as I write this, roughly half-way through the campaign period, we’ve reached 54% of the initial target. That means we’re likely to succeed.

The stress of not having a working computer is subsiding, but I’m not counting my chickens before they’re hatched.

People who write or perform for a living will also understand the importance of the kind of reassurance that comes with people supporting the plan which, until then, had existed solely in your own head.

That has helped. Thank you. If you haven’t done so already, please check out The 9pm Urgent Hardware Refresh

Thanks also to the many people who asked whether I was in any danger from this weekend’s bushfire at Wentworth Falls. No, I’m not.

The fire is only 3km from Bunjaree Cottages, but between it and me there’s some significantly challenging terrain, and the wind has been taking the fire in a different direction. More than 100 volunteers from the NSW Rural Fire Service have been keeping us safe.

I’m certainly paying attention to what’s happening, though, and I see that there’s a wind change forecast for Monday. Depending on how the RFS people go with their plans for the rest of today and overnight, well, my risk assessment may change.

Just as I write this, the alert for the fire area has been raised from WATCH AND ACT to EMERGENCY WARNING — the latter being described thusly:

You may be in danger and need to take action immediately. Any delay now puts your life at risk.

I must stress again, though, that I am not in the alert area, and I currently face no risk.

Articles

Podcasts

  • On Friday, I posted “The 9pm I Can’t Believe It’s Not a Planet”, being The 9pm Edict episode 46. I turned out better than its convoluted production process led me to imagine. I may tell you about that during the week.

Media Appearances

5at5

The hiatus has ended. There were two editions, on Thursday and Friday. Why not subscribe so you’ll get all the future ones?

Corporate Largesse

None. But there’s quite a bit scheduled for the coming week.

The Week Ahead

This is going to be a better-structured one, folks.

Monday will be a media production day — but I’ll decide the exact details on the day, depending on the bushfire threat level.

On Tuesday, I’ll be catching the 0706 train to Sydney, because on Tuesday and Wednesday I’ll be covering the ADMA Global Forum, presented by the Association for Data-driven Marketing and Advertising. Also, at 2030 AEST on Tuesday night, I’ll be a guest on ABC Local Radio around NSW. And on Wednesday night, I’ll be going to Text100’s (in)famous Christmas in August event, a preview of their clients’ consumer technology for Christmas.

On Thursday, I’ll be going to a lunchtime briefing by NetSuite, and writing something for ZDNet, before taking the train back to the Blue Mountains. Thursday is also the last day of The 9pm Urgent Hardware Refresh, with the campaign ending at 2100 AEST that evening.

On Friday, I’ll be confirming what’ll happen with the funds so raised.

[Photo: The Final Redoubt, photographed on 2 August 2015. Should I ever need a final hiding place from a severe bushfire — and everything has happened so quickly that we skipped straight past three levels of warning, the fire jumped the road and railway, and all escape routes were blocked — then this cutting on Railway Parade near Wentworth Falls is where I’d wrap myself in wet woollen items and hope for the best.]

Posted on

Talking the ACSC cyber threat report on 1395 FIVEaa

FIVEaa logoThe (relatively) new Australian Cyber Security Centre (ACSC) released its first-ever unclassified threat report yesterday, but as I wrote at ZDNet, I was disappointed.

The report (PDF) has dropped, and indeed it contains few surprises. It tells the now-familiar story of serious and organised criminals, foreign state-sponsored actors, and other “cyber adversaries”, all of whom are getting better at what they do.

“The cyber threat to Australian organisations is undeniable, unrelenting and continues to grow. If an organisation is connected to the internet, it is vulnerable. The incidents in the public eye are just the tip of the iceberg,” begins the report’s foreword.

“Cyber adversaries are aggressive and persistent in their efforts to compromise Australian networks and information. They are constantly improving their tradecraft in an attempt to defeat our network defences and exploit new technologies,” it says later.

“Australia is an innovative country with a globally important resources sector. We are a regional leader with global interests and important partnerships. This makes Australia a target-rich environment for cyber adversaries.”

All of which is true, of course, but all of which has been said so many times before.

I spoke about the report today with Will Goodings on 1395 FIVEaa Adelaide — with somewhat less disappointment in my voice.

Podcast: Play in new window | Download (5.5MB)

The audio is ©2015 Nova Entertainment.

Posted on

Weekly Wrap 267: Chaos, then embracing the change

To boldly go...: click to embiggenMy week of Monday 13 to Sunday 19 July 2015 continued the lack-of-productivity theme, alas. Mostly because my dying computer decided to die far more rapidly than it had been until now.

My sincere thanks go to Justin Clacherty for lending me a spare MacBook Pro until I can organise my own new machine. I’m pleased that the set-up and transfer of data to this “new” machine only took nine hours — well, plus the six hours it took to take a proper backup of the old machine, because it kept throwing errors.

That said, in the latter part of the week I did get quite a bit done on the Pozible crowdfunding campaign to pay for that replacement machine. That campaign should launch in the next few days.

And because I had to archive some data off the old computer — because it had a 750GB hard drive, whereas the loaner has a 500GB SSD — I was browsing through old photos and videos. This put me into a particularly reflective mood again on the weekend. I hope that some good will come of this, because having a properly-working computer again — and a fast one! — should provide another boost to my optimism.

Articles

Podcasts

None.

5at5

5at5 was still on hiatus this week.

Media Appearances

Corporate Largesse

  • On Monday evening, I caught up with Leslie Nassar to discuss a SEKRIT project, and he bought me dinner.

The Week Ahead

I’m back in Wentworth Falls this coming week, and most of it hasn’t been mapped out yet. Still, I have a broad outline.

On Monday Tuesday, I’ll be submitting that Pozible project for approval, doing some shopping in Katoomba, and mapping out my writing commitments for the next few weeks. Now that I have a working computer again, I’ve got heaps of work to catch up with.

On Tuesday Wednesday, I’ll be completing a video to go with that Pozible project, which should launch that day. I’ll also be producing an episode of The 9pm Edict podcast. I’ll delay the posting of both until Wednesday Thursday if the Pozible campaign doesn’t launch.

The rest of the week is a bit vague, but I know there’ll be a ZDNet column in there somewhere. And I’m guessing I’d better organise some other work as well.

Update 20 July 2015: Edited to slide nearly everything in the plan back a day, to reflect a Monday sickie.

[Photo: To boldly go…, being a small boat heading out into the fog of San Francisco Bay on 10 December 2010.]

Posted on

Weekly Wrap 261: Two conferences, two states, many cybers

Sunset on the Gold Coast: click to embiggenMy week of Monday 1 to Sunday 7 June 2015 has been both productive and exhausting, covering two conferences in two states.

It’s a long time since I’ve written five articles in week. It’s at least six months since I’ve done four, which is as far back as I could be bothered scrolling let alone five. But of course, there’s podcasts and other projects that have generated revenue, including random geekery and technical consultancy, so “number of articles” isn’t a fair measure.

Still, this has been one of my most productive weeks in a while. Excellent.

Articles

Podcasts

None. The next episode of The 9pm Edict is scheduled for Monday 15 June, or the day after.

5at5

There were two editions of 5at5 this week, on Monday, and Sunday. To save me having to tell you this, you could just subscribe.

Media Appearances

  • On Monday, I spoke about Chinese ATMs with face recognition on ABC 891 Adelaide.
  • On Friday, I took part in the AusCERT Speed Debate. The Livestream recording has bad audio, so I’ll link to the YouTube version when it becomes available.
  • Also on Friday, I was interviewed by the University of Melbourne student newspaper Farrago. I’ll link to that story when it goes live.

Corporate Largesse

  • On Tuesday, I went to the Check Point Cyber Security Symposium in Sydney, or at least part of it. The goodie bag included a signed copy of Brian Krebs’ book Spam Nation, a Check Point branded notebook, a chocolate from A10 Networks, and of course copies of Check Point’s promotional material. Food and drink were supplied.
  • From Tuesday night through to Friday, I was at the AusCERT Information Security Conference as AusCERT’s guest. They provided return flights from Sydney to the Gold Coast, airport transfers, three nights accommodation at RACV Royal Pines Resort, and of course all the conference food and drink — and there was plenty of that. For taking part in the Speed Debate, I was given a bottle of Jim Barry The Lodge Hill Shiraz 2012 from the Clare Valley. And everybody got a copy of Bruce Schneier’s book Data and Goliath, an AusCERT-branded shirt, and a rather well-made courier bag. From CyberArk: A macaron, delivered creepy-like into my hotel room while I wasn’t there. From Firemon: A branded glass-cleaning cloth. From Mimecast: a keyring bottle opener. From NCC Group: a golden bath duck. From the US Naval Criminal Investigative Service: an NCIS cap — yes, from the real NCIS, not the TV show.

The Week Ahead

Monday is a public holiday for the Queen’s Birthday, but nevertheless I’ll be working. I’ll be writing a feature for ZDNet, as well as returning to Wentworth Falls after a week away.

From Tuesday to Thursday, I’ll be working on another feature for ZDNet, as well as my “regular” column, as well as the running so late it’s embarrassing ebook. I see there’s an Apple keynote at 0300 AEST on Tuesday, so that may feed into something. [It didn’t.] And I’ve got an interview to do on Thursday afternoon.

On Friday, I’ll be heading down to Sydney for a media briefing by Cisco. Friday is another writing day.

I’m not sure how the weekend will go, but I see that there’s Poetry in the Pub in Katoomba on Sunday afternoon. I happened to be there last month, and I thought it might be interesting for The 9pm Edict podcast. We’ll see.

Update 11 June 2015: Edited to reflect the abandoning of the Friday trip to Sydney.

[Photo: Sunset on the Gold Coast, Photographed from the 16th floor of the RACV Royal Pines Resort on 3 June 2015.]

Posted on

Talking cybersecurity bollocks on ABC Radio’s “AM”

ABC logoFollowing the announcement of a new Australian Cyber Security Centre, to be built by the end of 2013, I ended up being interviewed by ABC Radio’s AM program on 24 January — but it didn’t turn out so flash.

Journalist Peter Lloyd asked me about cybersecurity threats. I think I mentioned that at one end of the spectrum there’s serious nation-state espionage and sabotage, but at the other there’s all manner of low-end crime that probably doesn’t warrant a national centre — and I used ransomware as an example of that.

But in the finished story, somehow that example became the defining crime. Oops.

PETER LLOYD: So far cyber crime in Australia has largely been a new form of stand-over tactic. The online commentator and writer, Stilgherrian:

STILGHERRIAN: We’ve got the low level cyber crime operatives who are just trying to hack into small businesses, encrypt all their data, hold them to ransom. We’ve seen cases of that with victims in Alice Springs and the Gold Coast and elsewhere in Australia, that a business finds that all the data on their computer is unavailable until they send money of some thousands of dollars to have it unlocked for them.

Anyway, for posterity, here’s the audio of the piece.

Podcast: Play in new window | Download (2.1MB)

The audio is ©2013 Australian Broadcasting Corporation.