-
Australian Cyber Security Connect Awards
Excited to share that I have been nominated as a finalist for two of the Australian Cyber Security Connect Awards this year, in the Cyber Rising Star and Professional of the Year category! Thank you to everyone who has supported me on my journey so far, especially the team at Gridware over the past two…
-
Latitude Finance: cyber incident update
Latitude Finance have confirmed that the threat actor responsible for the breach to their systems has requested a ransom payment to prevent the leakage of data exfiltrated [ransom amount yet to be disclosed]. Further information is yet to come;
-
TAFE NSW Institute of Applied Technology (IAT) opening
Excited last night to attend the opening event for TAFE NSW’s new Institute of Applied Technology. TAFE have worked with Microsoft, Macquarie University and University of Technology Sydney to develop micro-skill and micro-credential courses for people to get the skills required for junior roles in tech including cyber, AI, data analytics. All at an affordable…
-
Uptycs research – MacStealer: New macOS-based Stealer Malware Identified
A breakdown of research done by the team at Uptycs of a macOS stealer that is contorlled over Telegram, which they’ve dubbed: MacStealer. https://www.uptycs.com/blog/macstealer-command-and-control-c2-malware
-
Latitude Finance – now one of Australia’s largest data breaches
Latitude finance – who are responsible for providing financial services to customers across Australia and New Zealand have reported that the cyber breach that impacted their systems this month is larger than expected. Some key metrics reported by the AFR, and in Latitude’s latest ASX cyber update, as to what has been impacted by the…
-
CISA’s new tool: Untitled Goose Tool
Cybersecurity & Infrastructure Security Agency (CISA) have published a new tool to assist responders to detect malicious activity in Microsoft Cloud environments (Azure) using multiple sources for analysis; Azure sign in, Azure audit, M365 unified audit log, Microsoft Defender for IoT, Microsoft Defender for Endpoint Links: https://github.com/cisagov/untitledgoosetool https://www.cisa.gov/resources-tools/resources/untitled-goose-tool-fact-sheet
-
BreachedForums operator “Pompompurin”
Notorious Pompompurin has allegedly been arrested with charges of computer crime: https://news.bloomberglaw.com/privacy-and-data-security/dark-web-breachforums-operator-charged-with-computer-crime RIP 💀
-
OneNote Malware Delivergy
Interesting write up by Micah Babinski regarding the simplicity of malware delivery to unsuspecting persons using offline OneNote files – .one https://micahbabinski.medium.com/detecting-onenote-one-malware-delivery-407e9321ecf0
-
Institute of Applied Technology (IAT) Digital site-visit
Was great to be invited today to visit TAFE’s latest site, the Institute of Applied Technology (IAT) at Meadowbank. https://www.tafensw.edu.au/iat This campus has a focus on technology specific courses, which have been developed in partnership Microsoft, Macquarie University, and the University of Technology Sydney (UTS). So glad to see all the investment NSW Government is…
-
InverseCos: Detecting Fake Events in Azure Sign-in Logs
Write up by Lina L. about fake sign-in activity that can be generated by TA’s in Azure tenancies. https://www.inversecos.com/2023/01/detecting-fake-events-in-azure-sign-in.html?m=1
NPD4n6: Nicks DFIR blog 