Cyber Security Weekly Podcast

MySecurity Media

Cyber Security Weekly Podcast hosted by MySecurity Media

  • 57 minutes 36 seconds
    Episode 432 - Cyber Security Protections for Critical Infrastructure

    Are you prepared for a cyber-attack? Whether you’re managing a national or state-wide critical infrastructure organisation, or you’re a small rural provider with a lean team, the stakes are higher than ever for Australia’s Energy and Utility operators.

    Recorded on 20 November 2024 this webinar discusses the SOCI Act 2018 and the Essential Eight Framework, equipping you with practical strategies to strengthen your organisation's cyber resilience.

    Speakers:

    Tony Campbell - Principal, Security Consulting & Advisory, Kinetic IT

    Gayatri Prasad - Information Security Manager, Kinetic IT

    Heath Moodie - Senior OT Threat Intelligence Analyst, Dragos

    Moderator: Chris Cubbage - Executive Director & Editor of MySec.TV

    For more information visit www.kineticit.com.au

    To register for the series visit: https://mysecuritymarketplace.com/security-risk-professional-insight-series-kinetic-it/


    #otcybersecurity #cybersecurity #mysecuritytv #kineticit #dragos

    18 December 2024, 4:08 am
  • 6 minutes 43 seconds
    Episode 431 - New cybersecurity laws to have implications and expectations on Australian industry

    Fortifying Australia’s Data Resilience and Security Luncheon held 31 October 2024 at the National Press Club in Canberra gathered industry leaders, government officials and cybersecurity experts to explore Australia’s pressing cyber security challenges.

    As one of the most attacked countries in the world, Australia faces significant threats that demand urgent attention and innovative solutions. This event will focus on the sovereignty of Australian cyber and data residency, emphasising the need for robust strategies to protect our digital landscape.

    At this luncheon, the audience heard from keynote speakers and panellists discussing vital topics, including:

    • An update on the 2023-2030 Australian Cyber Security Strategy
    • Proposed Cyber Security Legislative Package 2024, consisting of
    • Cyber Security Bill 2024
    • Intelligence Services and Other Legislation Amendment (Cyber Security) Bill 2024
    • Security of Critical Infrastructure and Other Legislation Amendment (Enhanced Response and Prevention) Bill 2024
    • Global trends in Artificial Intelligence, data resilience and protection across government and corporate sectors
    • Strategies and reforms to safeguard Australian organisations and ensure data sovereignty and residency

    The event featured an open panel discussion discussing the current cyber security landscape.

    We spoke with Simon Bush, CEO of the Australian Information Industry Association (AIIA) who participated in the session.

    #MySecurityytv #cybersecurity

    16 December 2024, 2:02 am
  • 9 minutes 33 seconds
    Episode 430 - Legal framework changes for Australia's national cybersecurity

    Fortifying Australia’s Data Resilience and Security Luncheon held 31 October 2024 at the National Press Club in Canberra gathered industry leaders, government officials and cybersecurity experts to explore Australia’s pressing cyber security challenges.

    As one of the most attacked countries in the world, Australia faces significant threats that demand urgent attention and innovative solutions. This event will focus on the sovereignty of Australian cyber and data residency, emphasising the need for robust strategies to protect our digital landscape.

    At this luncheon, the audience heard from keynote speakers and panellists discussing vital topics, including:

    • An update on the 2023-2030 Australian Cyber Security Strategy
    • Proposed Cyber Security Legislative Package 2024, consisting of
    • Cyber Security Bill 2024
    • Intelligence Services and Other Legislation Amendment (Cyber Security) Bill 2024
    • Security of Critical Infrastructure and Other Legislation Amendment (Enhanced Response and Prevention) Bill 2024
    • Global trends in Artificial Intelligence, data resilience and protection across government and corporate sectors
    • Strategies and reforms to safeguard Australian organisations and ensure data sovereignty and residency

    The event featured an open panel discussion discussing the current cyber security landscape.

    We spoke with Annie Haggar, Partner and head of cyber security for Australia at global law firm Norton Rose Fulbright who participated in the panel.

    #MySecurityytv #cybersecurity

    13 December 2024, 12:52 am
  • 5 minutes 42 seconds
    Episode 429 - Fortifying Australia’s Data Resilience and Security

    Fortifying Australia’s Data Resilience and Security Luncheon held 31 October 2024 at the National Press Club in Canberra gathered industry leaders, government officials and cybersecurity experts to explore Australia’s pressing cyber security challenges.

    As one of the most attacked countries in the world, Australia faces significant threats that demand urgent attention and innovative solutions. This event will focus on the sovereignty of Australian cyber and data residency, emphasising the need for robust strategies to protect our digital landscape.

    At this luncheon, the audience heard from keynote speakers and panellists discussing vital topics, including:

    • An update on the 2023-2030 Australian Cyber Security Strategy
    • Proposed Cyber Security Legislative Package 2024, consisting of
    • Cyber Security Bill 2024
    • Intelligence Services and Other Legislation Amendment (Cyber Security) Bill 2024
    • Security of Critical Infrastructure and Other Legislation Amendment (Enhanced Response and Prevention) Bill 2024
    • Global trends in Artificial Intelligence, data resilience and protection across government and corporate sectors
    • Strategies and reforms to safeguard Australian organisations and ensure data sovereignty and residency

    The event featured an open panel discussion discussing the current cyber security landscape.

    We spoke with Rafe Berding, Chief Corporate Affairs Officer with AUCloud, AUCyber who chaired the session.

    #MySecuritytv #cybersecurity

    10 December 2024, 11:33 pm
  • 5 minutes 37 seconds
    Episode 428 - Australian cloud and cybersecurity changes underway

    Fortifying Australia’s Data Resilience and Security Luncheon held 31 October 2024 at the National Press Club in Canberra gathered industry leaders, government officials and cybersecurity experts to explore Australia’s pressing cyber security challenges.

    As one of the most attacked countries in the world, Australia faces significant threats that demand urgent attention and innovative solutions. This event will focus on the sovereignty of Australian cyber and data residency, emphasising the need for robust strategies to protect our digital landscape.

    At this luncheon, the audience heard from keynote speakers and panellists discussing vital topics, including:

    • An update on the 2023-2030 Australian Cyber Security Strategy
    • Proposed Cyber Security Legislative Package 2024, consisting of
    • Cyber Security Bill 2024
    • Intelligence Services and Other Legislation Amendment (Cyber Security) Bill 2024
    • Security of Critical Infrastructure and Other Legislation Amendment (Enhanced Response and Prevention) Bill 2024
    • Global trends in Artificial Intelligence, data resilience and protection across government and corporate sectors
    • Strategies and reforms to safeguard Australian organisations and ensure data sovereignty and residency

    The event featured an open panel discussion discussing the current cyber security landscape.

    We spoke with Samantha Maher, Head of Government Relations with AUCloud, AUCyber who participated in the session.

    #MySecurityytv #cybersecurity

    9 December 2024, 1:55 am
  • 18 minutes 18 seconds
    Episode 427 - Phishing, Voice Clones, Deepfakes

    Jane Lo, MySecurity Media Singapore Correspondent sat down with Syed Ubaid Ali Jafri, Head of Cyber Defense and Offensive Security at Habib Bank Limited (HBL), at Tech Week Singapore, to get his insights on the sophistication of these threats. We delved into:

    Motivations for Attacks on Financial Institutions:

    • Financial gain and data exploitation are prime motivations behind phishing and cyber attacks targeting banks. Attackers seek customer data, card details, and account balances, which they can use to extort or sell for profit.
    • Financial institutions are particularly vulnerable due to their reputational concerns, leading some to pay ransoms to protect customer privacy.

    Increasing Accessibility of Cybercrime Tools:

    • Advanced phishing tools, previously available only on the dark web, are now accessible on the surface web, enabling even less-skilled cybercriminals to launch attacks.
    • With the rise of AI, non-experts can craft convincing phishing emails, bypassing traditional spam filters and reaching unsuspecting targets.

    Role of AI in Sophisticated Cyber Attacks:

    • Gen AI and voice cloning technology make phishing more personalized and convincing, allowing attackers to craft emails and messages that mimic the target’s language and communication style.
    • The evolution from simple phishing to sophisticated voice and deepfake attacks was also highlighted, showing how AI can now be used to clone voices and create realistic fake videos with as few as 15 images.

    Challenges in Detecting AI-Driven Phishing and Deepfake Attacks:

    • Deepfake technology makes it challenging for the average user to distinguish between real and fake communications. Convincing voice and video deepfakes are increasingly used in spear-phishing, targeting specific individuals with tailored scams.
    • AI-powered tools generate flawless text, removing traditional phishing indicators like spelling errors or urgency cues, which previously helped users identify phishing emails.

    Recommendations for Protection:

    • Users are advised to be cautious about what they share online, as personal information posted publicly can help cybercriminals tailor their attacks.
    • Security tools like deepfake detection software can help individuals identify fake voices or videos, though awareness and cautious online behavior remain critical.
    • Cybersecurity education is essential, with both vendors and users needing awareness of AI-driven threats to implement better protective measures

    Recorded 10th Oct 2024, Tech Week Singapore 2024, 12.40pm.

    #mysecuritytv

    5 December 2024, 11:58 pm
  • 17 minutes 51 seconds
    Episode 426 - New Standard for Machine Identity Security

    We speak with Venafi's Chief Innovation Officer, Kevin Bocek following the acquisition by Cyberark, effective as 1 October, 2024.

    Given Kevin’s role over a decade with Venafi, he gives insight into what the acquisition of Venafi means for the customers of both companies and the market.

    We also discuss how the IAMs compliment each other and reflect the preference of customers to reduce the number of vendors, as well as responding to the state of play in terms of companies securing machine identities, and reflecting on the last 10 years how this will develop over the short to medium term.

    We also consider the emergence of Quantum and recent news that scientists have cracked a shortened RSA encryption.

    Recorded at Impact World Tour in Sydney, an identity security event, where, importantly Kevin has a key message for customers in APAC and Australia.

    #mysecuritytv #venafi #cyberark #impact2024 #iam #pam #identitysecurity

    3 December 2024, 11:55 pm
  • 22 minutes 37 seconds
    Episode 425 - AI & Quantum: The next legal frontiers

    We sat down with Mr. Yeong to delve into the rising tensions around AI ownership, the need for more transparency, and the importance of human oversight in this rapidly changing field. Our chat took us into the fascinating convergence of quantum tech and law—paving the way for a whole new frontier in tech law. Here is a summary of the conversation under four key areas:

    • Copyright: Cases like Getty vs. Adobe and Shutterstock are testing the limits of fair use as AI scrapes data to create new content. Different countries, like the U.S. and China, are adopting contrasting approaches to copyright. The U.S. Copyright Office has dismissed the notion that prompts given to AI can grant copyright to the user, while Chinese courts have ruled in some cases that if AI-generated content demonstrates sufficient creativity via prompts, the user may claim copyright.
    • Human-in-the-Loop: While AI can assist with tasks like summarizing legal cases or generating reports, professionals remain accountable for the final output. The Singapore Academy of Law has developed a prompt engineering guide to help lawyers use AI effectively while ensuring human supervision and responsibility in legal services.
    • Transparency & Explainability: Transparency means knowing how AI works, but explainability is the key to understanding why it makes certain decisions. The EU AI Act mandates transparency, but explainability is still optional. Mr. Yeong highlighted the importance of explainability in building trust with users and encouraged businesses to voluntarily offer this feature, particularly in areas like healthcare.
    • Quantum Law: While quantum computing is currently expensive and not widely accessible, its future could disrupt assumptions about data encryption and security. Mr. Yeong noted that as quantum technology advances, policies related to data protection may need to be revisited, especially for data with long-term value.

    Mr Yeong Zee Kin holds a Master of Laws from Queen Mary University of London and completed his undergraduate law degree at the National University of Singapore. His experience as a Technology, Media and Telecommunications lawyer spans both the private and public sectors. He has spoken and published in areas relating to electronic evidence and intellectual property, as well as legal issues relating to Blockchain and AI deployment.

    Zee Kin is an internationally recognized expert on AI ethics. He spearheaded the development of Singapore’s Model AI Governance Framework, which won the UNITU WSIS Prize in 2019. He is currently a member of the OECD Network of Experts on AI (ONE AI). In 2019, he was a member of the AI Group of Experts at the OECD (AIGO), which developed the OECD Principles on AI. These principles have been endorsed by the G20 in 2019. He was also an observer participant at the European Commission’s High-Level Expert Group on AI, which fulfilled its mandate in June 2020.

    Zee Kin is also a well-regarded expert on data privacy issues. He has contributed to publications on legal issues relating to data privacy and has spoken at many well-recognised international and domestic platforms on this topic.

    Recorded 12th September 2024 3pm. Tech Law Fest, Singapore.

    #mysecuritytv #ailawyer

    2 December 2024, 3:48 am
  • 6 minutes 8 seconds
    Episode 424 - The focus of communicating cybersecurity to company directors

    We speak with Chirag Joshi, Founder and CISO at 7 Rules Cyber – an innovative cyber security advisory and thought leadership company. He is a multi-award winning, seasoned cyber security executive with extensive experience leading cyber security and risk management programs in multiple countries across various industries. These include financial services, government, energy, higher education, and consulting. Chirag is the author of the two-bestselling books – “7 Rules to Become Exceptional at Cyber Security” and “7 Rules to Influence Behaviour and Win at Cyber Security Awareness." Chirag is featured in the prestigious CSO30 list of top cyber security executives in Australia. He is a Board Director and Vice President at ISACA Sydney. He is a well-known keynote speaker and has presented at numerous leading international and regional conferences and forums. Chirag has led teams and multi-million-dollar cyber transformation initiatives. He has experience in both IT and OT environments and managing cyber security through mergers and acquisitions.

    Cyber Security Asia 2024 took place on 7 – 8 October 2024 at ParkRoyal Hotel, Kuala Lumpur – bringing together top experts and practitioners for in-depth talks, and exclusive networking opportunities. It is a platform for the development of partnerships and strategies and highlights the latest technologies that are ensuring the safety and security of government, industry and individual.

    #7rulecyber #mysecuritytv #CSA2024

    28 November 2024, 11:29 pm
  • 7 minutes 47 seconds
    Episode 423 - Hacking the sky and uncovering the vulnerabilities of satellites

    We speak with Shahmeer Amir, CEO & Co-Founder of SpeeQR and his activities in hacking satellite transmissions.

    Shahmeer stands as a globally recognized Entrepreneur, world renowned public speaker and Ethical Hacker, awarded Entrepreneur of the year 2024 for founding multiple startups including Speeqr and also ranking as the third most accomplished bug hunter globally. Shahmeer has been invited to speak at 130 international conferences including Blackhat, DefCON, GiSec, National Security Summit, One Conference, and International Cyber Security. His expertise has been instrumental in assisting over 400 Fortune companies, such as Facebook, Microsoft, Yahoo, and Twitter, in resolving critical security issues within their systems. Shahmeer's entrepreneurial ventures in the technology realm have led to the establishment of multiple startups, with his current role involving the leadership of Speeqr, and involvement in Veiliux and Authiun. He serves as the Cyber Security Advisor to the Ministry of Finance in the Government of Pakistan. His involvement spans various projects, including Deep Sea Tracking, Digital Transformation of Legislation, and the Digitization of Pakistani Cultural Content. As a testament to his influence in the tech industry, he holds a position on the Forbes Technology Council.

    Cyber Security Asia 2024 took place on 7 – 8 October 2024 at ParkRoyal Hotel, Kuala Lumpur – bringing together top experts and practitioners for in-depth talks, and exclusive networking opportunities. It is a platform for the development of partnerships and strategies and highlights the latest technologies that are ensuring the safety and security of government, industry and individual.

    #mysecuritytv #austaraliainspacetv #csa2024 #spacecyber

    27 November 2024, 2:58 am
  • 4 minutes 38 seconds
    Episode 422 - Keeping to the basics in the Shadow World of cybersecurity

    We speak with Craig Ford who has over 20+ year ICT and Cyber professional with experience in all three Blue team, Red team and Purple teams across my career with more recently senior consulting and CISO engagements. He is the Head Unicorn (Cofounder and Director) for Cyber Unicorns. Cyber Unicorns is a cyber security consultancy with a big difference; we are on a mission to educate everyday people on how to be safer in this online world we all live in. Yes, we offer the usual cyber security consulting such as vCISO, cyber security strategy and maturity uplift but we do it all with education in mind. People are the key to improving cyber security safety around the world. He is Australia’s best-selling author of three different book series with a total of six books with more in the works. These series are A Hacker I Am, Foresight and The Shadow World.

    Cyber Security Asia 2024 took place on 7 – 8 October 2024 at ParkRoyal Hotel, Kuala Lumpur – bringing together top experts and practitioners for in-depth talks, and exclusive networking opportunities. It is a platform for the development of partnerships and strategies and highlights the latest technologies that are ensuring the safety and security of government, industry and individual.

    #csa2024 #mysecuritytv #cyberunicorns

    25 November 2024, 7:25 am
  • More Episodes? Get the App
© MoonFM 2024. All rights reserved.