Latest Blog.
Australian Organisations Take Note: Countering PRC State-Sponsored Cyber Threats
|The Australian Cyber Security Centre (ACSC) is urging Australian organisations to be vigilant against cyberattacks by state-sponsored actors of the People’s Republic of China (PRC). A joint Cybersecurity Advisory (CSA) issued in February by the ACS...
SIGBox Secure View: Enhanced Security for Sharing PROTECTED Classified Data
|Australian government agencies operate in an ever-changing digital world where collaboration is crucial. Data loss protection is essential when sharing necessary information with external partners, like law enforcement, external contractors working o...
Essential Eight and Legacy Systems
|In the many discussions I’ve had with our agency customers around their efforts to implement Essential Eight security, the most common obstacle encountered is deploying the strategies on the legacy systems remaining in their environments. By ‘...
Sovereign Cloud and AI: Where do I want my data stored?
|In 2006, Clive Humbly coined the term, “Data is the new oil.” Today, data and the significance of where and how it is stored, processed, and managed cannot be overstated. As an Australian, my preference would always be for data to be retained wit...
Safeguarding Against Cyber Supply Chain Compromises: Lessons from the XZ Utils Attack
|The recent cyber-attack on XZ Utils, a popular software used for file compression, underscores the escalating threat landscape targeting software supply chains. The breach, which involved malicious code inserted into the software’s updates, exposed...
Beyond the Essential Eight (E8) – where to from here?
|As the Australian government moves towards its next phase of the Cyber Security Strategy and consults industry to make legislative reforms, some quiet debate remains within government and industry circles about replacing the nation’s Essential Eig...
Developing Australia’s Defence Industry Base Report
|Today at the National Press Club the Sovereign Australian Prime Alliance (SAPA) launched a new report that sets out the pathway for creating Australian Headquartered businesses and highly skilled jobs in shipbuilding, cyber defence, space, missiles, ...
Reducing the risk of supply chain data breaches
|If you are sharing government data with third party service providers, are you certain that information remains secure, even if the sharing is for legitimate government approved purposes? Amid the increased cyber security threats facing Australian...
The UK NCSC 10 Steps and how they compare to the ACSC Essential Eight
|The NCSC “10 Steps to Cyber Resilience” is a set of high-level guidelines developed by the UK’s National Cyber Security Centre (NCSC). It provides organizations with a framework to improve their cybersecurity posture. The 10 Steps cover various...
What is a PROTECTED cloud?
|A PROTECTED cloud is a cloud computing service that has been assessed by the Australian Signals Directorate (ASD) to meet the security standards required for handling classified information by Australian government agencies. The DTA requires all ...