ASIC to lobby Govt for metadata access, from AU #cloud #cloudcomputing

The Australian Securities and Investments Commission has expressed concern at being excluded from the initial batch of approved agencies under the Government’s mandatory data retention scheme, and has promised to apply for access within six months of the scheme’s implementation. The Government’s Telecommunications (Interception and Access) Amendment (Data Retention) Bill 2014 will allow organisations classified as “criminal law enforcement agencies” to access metadata stored for two years under the regime without a warrant.

http://www.itnews.com.au/News/398334,asic-to-lobby-govt-for-metadata-access.aspx

Many organisations still fall short on cyber security: EY Malaysia study

Tax and financial consultancy EY’s annual global survey shows that Malaysian organisations are as unprepared for cyber attacks as their global peers. EY Malaysia partner, IT risk and assurance, Jason Yuen said globally more than a third of organisations (67 percent) are facing rising threats in their information security risk environment, but over a third (37 percent) have no real-time insight on cyber risks necessary to combat these threats.

http://mis-asia.com/resource/security/many-organisations-still-fall-short-on-cyber-security-ey-malaysia-study/

Australian Govt to rethink cyber security strategy

The Australian Government will soon seek advice from industry on a proposed update to the nation’s cyber security strategy, giving in to calls to review the ageing policy in light of a vastly different technological landscape. The existing cyber security strategy [pdf] was written in 2008 and introduced by the former Labor Government in late 2009. It aimed to increase the country’s awareness of and reaction to cybercrime incidents, and ensure government and local businesses used secure and resilient IT infrastructure.

http://www.itnews.com.au/News/398293,australian-govt-to-rethink-cyber-security-strategy.aspx

Holaa! A new mobile app from India identifies callers and blocks spam. It’s a challenge to TrueCaller

India is a unique market for mobile phones in more respects than one. It has a massive base of feature phone users. Large numbers of them are shifting to smartphones as more and more affordable devices – like the just launched Xiaomi Redmi Note – become available. But the ways in which Indians use their affordable smartphones is very different from those in other regions. This creates opportunities for mobile app developers to address some unique pain points.

https://www.techinasia.com/holaa-app-identifies-callers-and-blocks-spam/

GMO GlobalSign Joins Kantara Initiative as Internet of Everything (IoE) Demands Trusted Identities

GMO GlobalSign, the security division of Tokyo-based GMO Internet Group and a leading provider of identity services for online transactions, announced it has joined the Kantara Initiative, a business acceleration group and independent non-profit organization addressing the need for digital identity solutions to support and simplify consumers’ connected lives. A program of the IEEE Industry Standards and Technology Organization (IEEE-ISTO), the Kantara Initiative works to address the most significant technical and policy interoperability challenges facing the computing industry, including those presented by the Internet of Everything (IoE) and the estimated 50 billion “things” that will be connected to the Internet by 2020(1).

http://www.marketwatch.com/story/gmo-globalsign-joins-kantara-initiative-as-internet-of-everything-ioe-demands-trusted-identities-2014-11-19-161734533

Exclusive: Malaysia to pilot new mobile device policy

The Malaysian government is drafting a new policy to better protect information being accessed by officials through their mobile devices, the Government Chief Information Officer has told FutureGov. “The new policy will be about protecting information, regardless of what channel or endpoint device is accessing the information,” said Dr. Suhazimah Dzazali. It will tier access to information, acknowledging that access from both government and personal devices are likely.

http://www.futuregov.asia/articles/5728-exclusive-malaysia-to-pilot-new-mobile-device-policy

Infosys BPO removes CFO Abraham Mathews for violating code of conduct

BENGALURU: The CEO and finance chief of Infosys BPO have left the company after the parent discovered what it termed as failure to comply with its “code of conduct”, the first such incident at India’s second-largest software firm.  Infosys, widely respected for its transparency and corporate governance standards, appointed veteran executive Anup Uppadhayay as new CEO replacing Gautam Thakkar who resigned on “moral grounds”.

http://economictimes.indiatimes.com/tech/ites/infosys-bpo-removes-cfo-abraham-mathews-for-violating-code-of-conduct/articleshow/45195598.cms

Data breaches cost Australian companies an average $2.6 million each

The average cost of data breach per Australian organisation is almost $2.6 million per year – and rising. In its Cyber security – Empowering the CIO handbook, Deloitte provides practical insights into the evolving role of the Chief Information Officer (CIO) in managing cyber security threats and solutions. It also offers advice on how organisations can transform redundant cyber security approaches into effective ongoing security solutions.

http://www.arnnet.com.au/article/559997/data-breaches-cost-australian-companies-an-average-2-6-million-each/

Indian organisations lack skills to combat cybercrime: EY

NEW DELHI: Even as the threat landscape for cyber attacks is expanding on a rapid scale, about one-third organisations in India have no real-time insight on cyber risks necessary to combat these threats, a survey by global consultancy firm EY has found. According to the EY Global Information Security survey, companies are lacking agility, budget and skills to mitigate known vulnerabilities and successfully prepare for and address cybersecurity.

http://economictimes.indiatimes.com/tech/internet/indian-organisations-lack-skills-to-combat-cybercrime-ey/articleshow/45165340.cms

Microsoft wants antivirus vendors to remember who the bad guys are

AV vendors, in fierce competition for users, should remember that cooperation is key in fighting malware, a top Microsoft security official said Friday. Data sharing between vendors has resulted in a drop in the overall number of malware families affecting computers, said Dennis Batchelder, director of the Microsoft Malware Protection Center, at a conference of the Association of Antivirus Asia Researchers in Sydney.

http://www.computerworld.com/article/2848038/microsoft-wants-antivirus-vendors-to-remember-who-the-bad-guys-are.html

Microsoft And AWS Pass Singapore Security Standard

Microsoft has received the Multi-Tier Cloud Security (MTCS) Standard for Singapore (SS 584) Level-1 certification for Microsoft Azure cloud platform and Office 365 family of Web services. It is chasing Amazon, which has already received the higher level-3 certification for its Amazon Web Services (AWS). A cloud security standard, MTCS SS was developed by the Information Technology Standards Committee (ITSC) in Singapore and published in November 2013.

http://www.datacenterdynamics.com/focus/archive/2014/11/microsoft-and-aws-pass-singapore-security-standard

China builds computer network impenetrable to hackers

China will soon have the world’s most secure major computer network, making communications between Beijing and Shanghai impenetrable to hackers and giving it a decisive edge in its quiet cyberwar with the United States. In two years’ time, a fibre-optic cable between the two cities will transmit quantum encryption keys that can completely secure government, financial and military information from eavesdroppers.

http://www.telegraph.co.uk/news/worldnews/asia/china/11216766/China-builds-computer-network-impenetrable-to-hackers.html

Kaspersky: India among top 10 of Trojan-SMS malware attack

BANGALORE, INDIA: According to the results of the “Mobile CyberThreats” survey carried out by Kaspersky Lab and INTERPOL between August 2013 and July 2014, malicious programs targeting Android-based devices in order to steal their owners’ money were used in 60 percent of attacks registered by Kaspersky Lab security products.

http://www.ciol.com/kaspersky-india-among-top-10-trojan-sms-malware-attack/

Over a quarter of Australians won’t bank on their mobile: Kaspersky

A survey from Kaspersky Lab has found 27 per cent of Australians are not interested in using Internet banking on their smartphone or tablet. Kaspersky Lab A/NZ managing director, Andrew Mamonitis, said this is an increase from the 17 per cent recorded in last year’s Consumer Security Risks report. “The study highlights that Australians have a general awareness of a host of online threats,” he said. 67 per cent of respondents attributed the distrust to mobile devices being just as vulnerable to cybercrime as desktop and notebook PCs.

http://www.arnnet.com.au/article/558644/over-quarter-australians-won-t-bank-their-mobile-kaspersky/

Microsoft’s Azure and Office 365 achieve cloud security standard for Singapore

Microsoft announced today that it has achieved the Multi-Tier Cloud Security Standard for Singapore (MTCS SS) Level-1 certification for Microsoft Azure and Office 365. This Level 1 certification was granted to Microsoft to operate an Information Security Management System for Microsoft Azure and Office 365 cloud services including development, operations and support for the compute, storage, virtual network and virtual machines services.

http://www.mis-asia.com/tech/cloud-computing/microsofts-azure-and-office-365-achieve-cloud-security-standard-for-singapore/

ASEAN companies face cybersecurity challenges

As companies in the region go online, they face cybersecurity challenges in an evolving business landscape with new threats and security systems that are often too fragmented and complex. In an interview with The Brunei Times, Sugiarto Koh, CISCO System’s regional director for ASEAN for global security sales organisation, there are three main issues that companies have to deal with when it comes to cybersecurity.

http://news.asiaone.com/news/asia/asean-companies-face-cybersecurity-challenges

Singapore to invest US$33 million in cybersecurity research

The Singapore government has pledged S$42 million (US$33.6 million) to boost research on mobile, network and cloud security. The National Research Foundation has selected seven research projects which will receive the funding over the next two to five years, Teo Chee Hean, Deputy Prime Minister, recently announced.

http://www.futuregov.asia/articles/5234-singapore-to-invest-us33-million-in-cybersecurity-research

Cyber security spend by Indian firms down 17%: PwC

NEW DELHI: Average security spend by Indian firms has come down by 17 per cent to $ 4 million this year even as information security breaches have become more frequent and damaging.  According to consultancy firm PwC, Indian companies spent an average of about $ 4.8 million on security last year.  This is despite the average cost of a security incident for Indian companies spiralling to $ 414 in 2014, from $ 194 in 2013.

http://economictimes.indiatimes.com/tech/ites/cyber-security-spend-by-indian-firms-down-17-pwc/articleshow/44889756.cms

ASD staff move into Australia’s new security hub

Information security professionals from Australia’s defence, law enforcement and intelligence services have finally started moving into the $630m ‘Ben Chifley’ building constructed for the Australian Security and Intelligence Operation (ASIO) to form the Australian Cyber Security Centre (ACSC). Major General Stephen Day, deputy director of cyber and information security at the Australian Signals Directorate, told the AISA national conference today that he expected the new centre would be functional by November and fully operational by December.

http://www.itnews.com.au/News/396848,asd-staff-move-into-australia8217s-new-security-hub.aspx

Singapore customs considers iris scanning at borders

The Immigration and Checkpoints Authority of Singapore told local media that they are exploring iris scanning as a potential technology to complement its existing biometrics system.  Currently, Singapore citizens, permanent residents and work pass holders who have registered their fingerprints in the country’s national database can clear immigration through automated gates.  The proposals will allow the authority to evaluate if the technology is ready and suitable to be used at the checkpoints.

http://www.futuregov.asia/articles/4700-singapore-customs-considers-iris-scanning-at-borders