Microsoft’s Azure and Office 365 achieve cloud security standard for Singapore

Microsoft announced today that it has achieved the Multi-Tier Cloud Security Standard for Singapore (MTCS SS) Level-1 certification for Microsoft Azure and Office 365. This Level 1 certification was granted to Microsoft to operate an Information Security Management System for Microsoft Azure and Office 365 cloud services including development, operations and support for the compute, storage, virtual network and virtual machines services.

ASEAN companies face cybersecurity challenges

As companies in the region go online, they face cybersecurity challenges in an evolving business landscape with new threats and security systems that are often too fragmented and complex. In an interview with The Brunei Times, Sugiarto Koh, CISCO System’s regional director for ASEAN for global security sales organisation, there are three main issues that companies have to deal with when it comes to cybersecurity.

Singapore to invest US$33 million in cybersecurity research

The Singapore government has pledged S$42 million (US$33.6 million) to boost research on mobile, network and cloud security. The National Research Foundation has selected seven research projects which will receive the funding over the next two to five years, Teo Chee Hean, Deputy Prime Minister, recently announced.

Cyber security spend by Indian firms down 17%: PwC

NEW DELHI: Average security spend by Indian firms has come down by 17 per cent to $ 4 million this year even as information security breaches have become more frequent and damaging.  According to consultancy firm PwC, Indian companies spent an average of about $ 4.8 million on security last year.  This is despite the average cost of a security incident for Indian companies spiralling to $ 414 in 2014, from $ 194 in 2013.

ASD staff move into Australia’s new security hub

Information security professionals from Australia’s defence, law enforcement and intelligence services have finally started moving into the $630m ‘Ben Chifley’ building constructed for the Australian Security and Intelligence Operation (ASIO) to form the Australian Cyber Security Centre (ACSC). Major General Stephen Day, deputy director of cyber and information security at the Australian Signals Directorate, told the AISA national conference today that he expected the new centre would be functional by November and fully operational by December.,asd-staff-move-into-australia8217s-new-security-hub.aspx

Singapore customs considers iris scanning at borders

The Immigration and Checkpoints Authority of Singapore told local media that they are exploring iris scanning as a potential technology to complement its existing biometrics system.  Currently, Singapore citizens, permanent residents and work pass holders who have registered their fingerprints in the country’s national database can clear immigration through automated gates.  The proposals will allow the authority to evaluate if the technology is ready and suitable to be used at the checkpoints.

China armed forces plan improved cyber security

China’s military forces will ramp up their cyber security and speed domestic development of software, the country’s state media said in a statement yesterday. The plan underscores China’s increasingly vocal concern that the internet is dominated by Western powers and values. “Information security must be considered an underlying project in military battle preparedness,” the official People’s Liberation Army Daily said.,china-armed-forces-plan-improved-cyber-security.aspx

Up to 750,000 Japan Airlines customers’ details leaked

Japan Airlines (JAL) has confirmed that the personal information of up to 750,000 JAL miles club members were leaked following unauthorised access of the airline’s database by an external server this week. The attack affected the data of between 110,000 and 750,000 members of JAL’s miles club, which grants passengers points for flying with the airlines and gives them discounts on future flights. However, the airline has not yet confirmed if the customers’ passwords or credit card details were also leaked, reported AAP.

CommBank discovers security issues with NBN-connected ATMs

The Commonwealth Bank’s new CIO David Whiteing has offered up his thoughts on how the process of migrating users to the NBN could be improved, revealing security issues resulting from the connection of ATMs to the NBN. Communications Minister Malcolm Turnbull last month asked industry how the migration of users from copper services to the NBN could be fixed following difficulties with the first round of transfers.,commbank8217s-new-cio-weighs-into-nbn-migrations-debate.aspx

Unix bug ‘Shellshock’ leaves software experts, industry shocked, from IN

MUMBAI/BANGALORE: A new software security threat is giving sleepless nights to India’s information guardians and has prompted companies such as ITC and Future Group to take swift action to protect their systems.  The Bash bug, or Shellshock as it is popularly known, is said to be more dangerous than the Heartbleed computer security flaw discovered earlier this year. Unix-based operating systems such as Apple’s Mac OS X and Linux are vulnerable to the bug, which allows hackers to gain control over a user’s computer remotely without authorisation.

Government’s secure email service to cover 5 million officials by Mar 2015

NEW DELHI: By the end of the current fiscal, five million officials will be using government’s secure email, which seeks to ban use of popular email services like Gmail and Yahoo! in official communication to safeguard critical and sensitive government data.  Government has approved the proposal moved by Department of Electronics and Information Technology (DeitY) to establish a secure and encrypted email service for government officials.

Personal data protection to become top priority

Since the advent of “Celebgate”, the term created to denote the recent cyber attack on Apple’s iCloud cloud computing service, debate regarding personal privacy protection has once again turned into an Internet meme. In the midst of the discussion for personal data security, the 2014 China Internet Security Conference (ISC 2014), an annual summit in the Asia Pacific information security field, was held on Wednesday at the Beijing National Convention Center.

Taiwan government investigates Xiaomi on cybersecurity concerns

TAIPEI: The Taiwanese government is investigating whether Xiaomi Inc, China’s leading smartphone company by domestic shipments, is a cyber security threat and will make a decision within three months.  It wasn’t immediately clear whether the investigation could lead to any ban for Xiaomi’s low-priced smartphones in Taiwan.  Some Xiaomi phones automatically send user data to the firm’s servers in Beijing, where the company is headquartered, potentially leading to security breaches, according to a statement posted on the website of Taiwan’s executive branch on Tuesday.

Telstra expands into digital signatures service

Telstra has expanded its investment spree into the digital signatures space, sinking an undisclosed sum into San Francisco-based transaction management firm DocuSign. DocuSign specialises in encrypted document exchange technologies and digital signature document authentication, and boasts 40 million users globally.,telstra-expands-into-digital-signatures-service.aspx

PDPC to investigate M1 ‘security loophole’

The Personal Data Protection Commission is in touch with M1 regarding an alleged security breach by a customer, wanting to flag a “loophole”, even though M1 says it has resolved the issue and put safeguards in place. SINGAPORE: The Personal Data Protection Commission (PDPC) is investigating a “security loophole” that caused M1 to temporarily suspend pre-orders for Apple’s iPhone 6 smartphones on Monday (Sep 15).

Wikileaks: Singapore firm with government ties bought cyber snooping software

On September 15, Wikileaks released copies of invoices and support tickets from Germany-based software company FinFisher. This revealed the names of most of their clients, and how much they’ve paid for their technology. If you’re wondering why they deserve this, you should know that this particular firm deals in weaponized surveillance malware that reportedly includes the following:

Rs 800-crore centre to help people check malware in computers

NEW DELHI: Amid growing use of IT, the government today said it will step up cyber security measures under Digital India programme starting with a Rs 800 crore centre that will help people check and clean their computer system from viruses and other malwares. “We are going to make national cyber coordination centre at an estimated cost of Rs 800 crore. For this we are carrying out inter-ministerial consultation… It will have capability to tell you that your computer system is infected and will clean that infection as well,” Telecom and IT Minister Ravi Shankar Prasad said in a conference on 100-days performance of his ministry.

Salesforce customers targeted by malware – from AU

Customer relationship management giant Salesforce is warning its customers that they may be targeted by the new Dyre or Dyreza malware, which is designed to steal log-in credentials. Dyreza spreads via phishing emails, with malware attachments that are activated via social engineering (convincing users to click on what otherwise appears to be a legitimate attachment).,salesforce-customers-targeted-by-malware.aspx

India Third Most Affected Nation By Online Banking Malware

NEW DELHI: Growing Internet penetration and rising popularity of online banking have made India a favourite among cybercriminals, who target online financial transactions using malware, security solutions provider Trend Micro said. According to the firm, India ranks third after Japan and the U.S. in the tally of countries most affected by online banking malware during the April-June quarter of 2014.

New Zealand’s Internet Crashed After Users Clicked Infected Links To Jennifer Lawrence’s Nude Photos

New Zealand’s main internet provider, Spark, suffered a major nationwide failure this weekend after a handful of users found themselves installing malware on their computers when they clicked on links promising nude photos of celebrities.  On Aug. 31, a massive hack led to a leak of tons of nude photos of major celebrities. Jennifer Lawrence, Ariana Grande, and Kim Kardashian were all victims of the breach after their private images were taken out of their iCloud storage systems and posted to online communities within Reddit and 4chan.