The end of the cyber road. This week we say goodbye to the Get Cyber Resilient show. Dan, Gar and Vinh take one last look behind the cyber news.

In this episode, we start with Australian Prime Minister Anthony Albanese’s answer to cyber resiliency; we then jump over to the world of OT and how Schneider Power metres have been disclosing that they transmit user IDs and passwords in plain text. In our last deep dive, we review the appointment of Australia’s first Cyber Security Coordinator. As always, we wrap with a lightning round of the latest breaches and vulnerabilities to make the headlines.

A big thank you goes out to everyone behind the show and also you, our listeners that have either been with us from the beginning or only found us recently; we appreciate every one of you for your support over the years.

In this episode, Gar sits down with Belinda Noel, Chief Growth Officer at Secolve. Belinda talks us through the expanding world of Operational Technology (OT) and Cyber Security, looking at its growing importance and need for attention. We look at the differences and overlap between IT, OT and IOT, and how each play their part, the immaturity of OT security and why it hasn't been a priority and the threats which are bringing it to the forefront of cyber concerns.

Useful Links:

• Maroochy shire attack: https://www.industrialcybersecuritypulse.com/facilities/throwback-attack-an-insider-releases-265000-gallons-of-sewage-on-the-maroochy-shire/
• OT Brisbane Meet Up https://www.linkedin.com/events/otcybersecuritymeetupbrisbane7057209152976162816/comments/

• OT Cyber Security at EnergyAustralia: https://www.linkedin.com/posts/secolve_secolve-cybersecurity-otsecurity-activity-7052441794709487616-GPec/?utm_source=share&utm_medium=member_desktop
  
• 
  https://secolve.com/critical-infrastructures-most-notorious-cyber-threat-actor-groups/

On this week’s news episode, Dan, Gar and Vinh are taking another look behind the cyber news, starting with Toyota, and customer information that has been publicly accessible forover 6 years. Next we dive into the supply chain attack impacting many high profile British brands that is linked to a Russian cyber gang, we then discuss how the government is exploring regulations for Artificial intelligence technologies. We wrap up the episode with a lightning round of the latest breaches and vulnerabilities to make headlines.

This week we are joined by Matt Wilcox, Founder and CEO at FifthDomain. In this conversation, Matt and Gar discuss the growing gap in our local cyber workforce and the initiatives needed to fix the problem. Matt explains the ways we can ensure cyber training is most effective for those coming into the workforce, and the role Government and industry leaders can play in standardising cyber education.

On this week’s episode, Gar and Vinh are taking a look behind the cyber news, kicking off with the twitter hacker extradition in the US, we then discuss the snake espionage infrastructure that cyber agencies have detected in over 50 countries.

Staying global, we look at how the EU is going hard on cyber labelling for the cloud services, then back at home, we cover the Capita ransomware attack costs, Microsoft patches and the trading halt for Australian company TechnologyOne. As always, we wrap up with a lightning round of the latest breaches and vulnerabilities to make the headlines.

Check out some of out latest articles:

• This month in security: April 2023
• Zero trust’s pitfalls – and how to sidestep them
• Legacy technologies remain a big thorn in the side of cybersecurity leaders
• Paying the bill: will SBOM save the software supply chain?

Or subscribe to our free monthly newsletter!

We’re back for the first episode of Season 10! In this Behind the Cyber News episode we kick off with a look into the United Nations Cyber Crime Treaty and its implications on global law enforcement. We then review the Top 5 Most Dangerous cyberattacks for 2023 as announced by the SANS Technology Institute at the RSA Conference, we then move back to local headlines with the Federal Government and Minister Clare O’Neil warning that Australia faces a ‘dystopian’ future of cyber attacks targeting the fabric of our society. We then wrap up of the latest breaches and vulnerabilities to make the headlines.

Check out some of out latest articles:

• This month in security: April 2023
• Zero trust’s pitfalls – and how to sidestep them
• Collaboration tools, essential but risky
• Paying the bill: will SBOM save the software supply chain?

Or subscribe to our free monthly newsletter!

This week we are joined by Dr Andrew Reeves, Director at Cybermindz and a psychologist. In this conversation, Andrew talks us through the Cybermindz organisation, the data that came has been uncovered in his research on mental health in cyber and the nine attributes that point to what is different in the world of stress and burnout in cyber and what that can cost a company and a country.

Andrew also walks us through the cognitive heuristics and biases attackers use to gain access to systems, and how to align your security alertness (aka awareness) program to work with the mindsets, values and motivations of employees.

Find out more about Andrews work here: https://www.linkedin.com/in/andrewreevescyber/

On this week’s episode; Dan, Gar and Vinh kick off with a look behind the latest high profile, large scale breach – Latitude Financial. We then pivot to a review of the latest misuse of AI, fooling voice recognition systems used to verify identity by Centrelink and the ATO, we also discuss the possibility that the federal government is considering making the tech sector bear more liability for insecure products. As always, we wrap up the episode with a lightning round of the latest breaches and vulnerabilities to make the headlines.

Check out some of out latest articles:

• ⁠This month in security: March 2023⁠
• From farm-to-phish: hackers set their eyes on the agriculture sector
• How next-gen DDoS can overwhelm even the most resilient organisations
• Why the answer to cyber’s talent shortage could be staring CISOs in the face

Or subscribe to our free monthly newsletter!

On this week's episode Gar talks with David Higgins, former CISO for Kiwibank.

In this conversation, David takes us through what AI and ChatGPT mean for cyber, providing a clear understanding of what it is and what it isn’t. He also provides insights into what it means for both the attackers and protectors, as well as what is hype, what is real and where does it lead us. To wrap the episode, we cover a topic that is very important to David, people.

On this week’s episode, the team are back to look behind the cyber news, starting with the announcement from the Home Affairs Department to restructure in order to give government a ‘cyber spine’. We investigate the plan from the European Central bank to run stress tests on cyber resilience across Europe’s top banks in response to the sharp rise in cyber attacks. To wrap up the show, we discuss the new “bootkit” malware called BlackLotus and the risk it poses as well as a lightning round of the latest breaches and vulnerabilities to make the headlines.

On this week’s episode, Gar sits down with Mimecast Co-Founder and CEO, Peter Bauer. 

Peter talks through his journey in cyber and the genesis of Mimecast, how he navigated the ups and the down, how he maintained an entrepreneurial mindset and culture as the company grew. We then cover what Peter sees as the biggest emerging risks in cyber, and the importance of cyber strategy at a board level.

On this week’s episode Dan, Gar and Vinh take another look behind the cyber news, we kick off by looking into the breach at cryptocurrency exchange Coinbase. We then dive into the recent Attorney General’s review of the privacy act and the recommendations made to further help protect people from worsening cybersecurity threats. We then look into AI powered chatbots and how they can be hacked to reveal information that is meant to be kept out of the public domain, and we wrap up the show with the latest breaches and vulnerabilities to make the headlines.

Check out some of out latest articles:

• Ride out the cyber storm with continuity planning
• Singapore’s blueprint for fostering a resilient and secure cyber environment
• Thinking out of the box: keeping cloud containers secure
• How ChatGPT is changing the game for hackers and CISOs

Or subscribe to our free monthly newsletter!

We are joined this week by Dan Elliott, Principal for Cyber Security Risk Consulting at Zurich, member of CyAN (Cybersecurity Advisors Network) and former intelligence officer.

In this episode, Dan walks us through the evolution of cyber insurance and how organisations should think about cyber insurance. We wrap the interview with Dan’s perspective on security convergence and its benefits.

On this week’s episode Dan, Gar and Vinh take another look behind the cyber news, covering the proposal to institute a government wide ban on Chinese-linked cameras as well as delving into the hottest topic in tech on the planet at the moment, ChatGPT and its impact on cybersecurity. We then pivot into a deep dive review of the new industry group formed to boost national critical infrastructure resilience and wrap up the show with the latest breaches and vulnerabilities to make the headlines.

Check out some of out latest articles:

• This month in security: January 2023
• How ChatGPT is changing the game for hackers and CISOs
• Test your code before a criminal does
• Cross-platform attacks could make ransomware even more deadly

Or subscribe to our free monthly newsletter!

In our first interview of season 9 we are joined by Grant Chisnall, CEO and Founder of Left of Boom and host of the Crisis Talks podcast.  In this episode, Grant covers the changes he has seen in crisis preparation and management, how organisations change after being through a crisis event and also the importance of people vs process when crisis events happen.

And we're back, for the first episode of 2023! Dan, Gar and Vinh return to the mics and take us behind the latest cyber news making headlines. In this episode we cover the newly formed global Ransomware taskforce being led by Australia, we dive into how an outage at the Federal Aviation Administration (FAA) in the US sent the nation into travel chaos, and how revenue from Ransomware attacks fell by over $300 million dollars in value in 2022. We then wrap up of the latest breaches and vulnerabilities to make the headlines.

Check out some of out latest articles:

• This month in security: January 2023
• Cross-platform attacks could make ransomware even more deadly
• Cyber insurance: essential protection or pointless expense?
• Financial services are facing fresh cyber threats

Or subscribe to our free monthly newsletter!

For our last episode in 2022, we look forward into the new year and hear from the team and some previous guests who give their Cyber Predictions for 2023. 

Guests include:

• Duncan Jones from Quantinuum
• Lee Roebik from Sekuro 
• Peter Coroneos from Cybermindz 
• Shishir Singh from Blackberry 

For a look back at the year that was, keep an eye out on getcyberresilient.com for our This Year in Security special!

Wishing our listeners a very Merry Christmas and Happy New Year. Thanks for listening and until next time in Feb 2023, stay safe.

On this week’s Behind the News episode; Dan, Gar and Vinh kick off by taking a look into a ‘false subscription callback scam’ from a group called Luna Moth. We then review the latest attack on LastPass and breached customer details; we continue with another win for the good guys, this time with the arrest of nearly 1,000 suspects. We then wrap up of the latest breaches and vulnerabilities to make the headlines.

Check out some of our latest articles:

• This month in security: November 2022
• Securing Australia’s cyber future Part 1: The big breach nightmare
• Securing Australia’s cyber future part 2: CISOs, breaches and the duty of care
• Securing Australia’s cyber future part 3: why incident response is every team’s responsibility
• Zero Trust may hold the key to cybersecurity in APAC

Or subscribe to our free monthly newsletter!

On this week’s ep, the team kick off with a review of the latest developments and impacts from the Medibank and Optus breaches. We then investigate the Thales data breach that wasn’t through their IT systems as well as another win for the good guys with the arrest of 59 suspected scammers across Europe.  We then wrap up of the latest breaches and vulnerabilities to make the headlines.

Check out some of our latest articles:

• Securing Australia’s cyber future Part 1: The big breach nightmare
• The big idea: why IP cyber theft is a bigger risk than you think
• How a recession could hit your cyber defences

Or subscribe to our free monthly newsletter!

On this week’s Behind the News episode, the team discuss the ongoing fallout from the Optus and Medibank breaches, as well as looking into the latest victim, Harcourts Melbourne. We then pivot to the take down of an international cybercriminal in the Netherlands and an attack on a German copper smelter and the implication it could have locally. We then wrap up of the latest breaches and vulnerabilities to make the headlines.

Check out some of our latest articles:

• How a recession could hit your cyber defences
• The future of the firewall
• This month in security: October 2022

Or subscribe to our free monthly newsletter!