iTWire Adobe completes Australian IRAP Assessment for Adobe Sign
Shares
Company News: Adobe today announced it completed its assessment with the Australian Information Security Registered Assessors Program (IRAP) for Adobe Sign, the market-leading e-signature solution in Adobe Document Cloud. With cyber and information security being a top national priority, IRAP was established by the Australian Signals Directorate (ASD) initiative with an aim to provide high-quality information and communications technology (ICT) security assessment services to government and industries.
The IRAP assessment demonstrates Adobe’s commitment to creating better and safer citizen experiences when working with digital governments around the world.
Globally, Adobe is working with government and regulatory bodies to help accelerate digital government experiences by keeping security top of mind. In the US, Adobe is FedRAMP-authorised and recently announced it partnered with governm
Gas pipelines in urgent review of defences after Colonial hack
May 14, 2021 – 2.41pm
Share
Gas pipeline owners in Australia are intently scrutinising the devastating ransomware attack that brought the United States’ biggest pipelines for petrol and diesel to a near-week-long standstill, with the intention of beefing up their already extensive cyber-security precautions and improving “plan B”-type fall-back measures.
Pipeline industry sources say operators already have extensive back-up measures and redundancies in place to try to ensure supply is maintained in the event of a cyber-attack, given the risk to critical infrastructure from malicious actors has been evident for many years.
Engineering firm involved in Nine HQ hit by cyber raid
Share
An engineering company paid by Nine to help find and plan its Sydney headquarters has been hit by a ransomware attack, with hackers threatening to release a trove of stolen information.
The cyber raid comes six weeks after an attack on Nine’s North Sydney offices at 1 Denison Street, which disrupted publishing and broadcasting at the country’s largest media company.
An artist’s render of Nine’s North Sydney headquarters at 1 Denison Street.
Sydney-headquartered Medland Engineering, which has offices across Australia and in London, was given 10 days to pay a ransom, after which the hackers said they would publish stolen information on the dark web.
Avaddon is spread via phishing and malicious spam campaigns that deliver malicious JavaScript files, the ACSC says. These are often low in sophistication, containing a threat suggesting the attached file contains a compromising photo of the victim, the Australian agency says. Double extortion techniques are used, such as coercion and further pressure to pay a ransom, including threatening to publish the victim’s data … and threatening the use of DDoS attacks against the victims.
Written in C++, Avaddon encrypts data using a unique AES256 encryption key, the agency reports. During the infection process, Avaddon checks the operating system language and keyboard layouts. If a potential victim’s operating system language is set to specific languages normally used in the Commonwealth of Independent States - formerly part of the Soviet Union - the malware ceases operation without harming the system.
The five questions directors need to ask about cyber security
Cyber security is a broad business issue, not just one that can be left with the IT department, say Anna Leibel (left) and Claire Pales, directors of boutique advisory firm The Secure Board.
Eamon Gallagher
Share
John Mullen wouldn’t wish it on anyone. The Telstra chairman also sits at the helm of logistics group Toll, which was the victim of two cyber attacks in 2020.
Of the first attack, Mullen says: “I can’t remember the time of day now, but you get those calls at midnight or one o’clock in the morning. We were all on deck almost immediately. We didn’t know for some while how far it had gone and how damaging it was, but it escalated by the hour. It was really scary and as a director you really have to look at yourself in the mirror and say: ‘Jesus, what could I have done to have at least mitigated it, if not stopped it?’”