It seems not a day goes by without some major data breach occurring on businesses systems. Anywhere from a few thousand records to many millions at a time, containing information ranging from names, addresses, telephones number, dates of birth and account details, etc. One thing I have noticed, that seems to be a constant throughout Read more about Encrypt Email addresses at Rest[…]
This a quick post to say that I have just received the latest print of my book, now updated to cover off recent changes in legislation, plus some changes from feedback given by readers – much thanks! This makes the book even more useful to those looking to properly secure personal information in businesses and Read more about Latest print of book is out[…]
It appears the Australian Federal Government is determined to do a Thelma & Louise and literally drive off a cliff into the abyss over truly mindless and ill-conceived legislation as concerns encryption, privacy and security. It has the potential to make us totally uncompetitive in global information technology markets and cut off at the knees a fledgling Read more about Will the last AU based start-up please turn off the light?[…]
This a quick post to say that my first book has now been published on Amazon. In total its taken a good 9 months from the initial idea. The book focusses on Personal Information Security and how in business personal information needs to be secured and protected. The book is full of lots of practical Read more about First book published[…]
Securing Personal Information in a business is a critical undertaking. Failure to appropriately secure Personal Information can result in information breaches, heavy fines and a loss of business reputation which could impact the long viability of a business. In most countries, it is a requirement when handling Personal Information to abide by privacy regulations. This Read more about Personal Information Security[…]
In our modern world its difficult to comprehend how many systems hold various bits of information on you, it ranges from banks, credit score agencies, dentists, all the way to SaaS providers and your telco. Social networks also have mountains of information on you that they mine to work out your personal preferences, so they Read more about Privacy and Security go hand in hand[…]
API’s are a convenient and handy way to get different computers systems to talk to each other, but often they are also an easy way to get in by the backdoor deep into computer systems. In this article, we look at few of the most common mistakes made and what you can do about it. Read more about API Security – Carefully does it![…]
Are you a business using outsourced software development and you are not sure of the quality of the code being written? Concerned that the code quality won’t be able to support your growing business? Unsure whether the code is secure and following the regulations required for your business sector? Aykira can help you, we are Read more about Code Reviews for Businesses[…]
Privacy is a big concern if you are running a business, regardless of size. All businesses need to keep sensitive information about their customers, staff, associations and potential customers – all of this will contain information that pertains to individuals which could cause them (and you) harm if illegal accessed or divulged. Further the ability Read more about Privacy and Your Business, what are the risks?[…]
Given the release of the KRACK vulnerability, it is becoming very clear you need to take additional steps to make your Wifi network more secure. You should take this as a wake up call to understanding the risks inherent with a Wifi network and just how easily it can be used to gain access into Read more about KRACK – Securing Your Wifi Network[…]
I must admit, one of my all time pet peeves is when engineers do not implement their user authentication service in the right way to be defendable against an attack. Take for the instance the recent hack against Zomato in which they had 6.6m hashed user passwords stolen. The real problem here is not that the Read more about User Authentication, you must do it right![…]
According to a recent report – security looks to be a top concern among Software Architects. In this article I go into detail on one of the core ways in which you can achieve dependable security in evolving online systems – namely defense by depth. What is defense by depth? Simply put this is where one Read more about Software Architect Security – what does defense by depth mean on the cloud?[…]
PII (Personally Identifiable Information) broadly speaking is information that relates directly to the individual (you) and allows you to be individually identified, plus it is often of a sensitive private nature. We explain in this article what it is and how to protect yourself against people trying to steal your identity through PII. Why is Read more about What is PII Really?[…]
Online systems need to be both secure and designed to last, so how can you achieve both and not blow the budget? This article covers a few simple principals you can adopt which are both good for your systems architecture and good for your security. #1 System Components should only do what they say on Read more about Systems Architecture & Security, winning at both[…]
According to this article Cisco just had a bit of a shock in the Vault 7 CIA leak – namely that a simple malformed telnet command to one of its effected switches can either reboot it or get it to execute commands with admin privileges (or the equivalent of admin). This is a Zero Day as Read more about Just turn off telnet everywhere now…[…]
PayPal have committed to a longer signing key length and part of this is in the need to upgrade your SSL and CURL stack to support TLS 1.2 and HTTP/1.1, this will hit most people via the IPN acknowledgement call back. Why the longer key length? Basically over time the ability of computers to ‘crack’ a Read more about PayPal SSL upgrade to TLS 1.2 and HTTP/1.1[…]
Websites or online services come under constant attack from hackers using automated scripts, if left unmanaged such attacks can consume sufficient resources to impact your quality of service, negatively impacting your brand. This article explains why this is a major problem and what the solution is. Online Security Matters, Dictionary Attacks are everywhere Every online Read more about Online Security and Hungry Caterpillars – they have a lot in common…[…]