CyberCX

Don't let your ISO 27001 certification lapse ⚠ Our upcoming webinar will cover recent changes and what actions your organisation should take for a successful transition. Join veteran ISO expert David Simpson, Senior Client Director at CyberCX, to learn about: 🔹 Key control changes in the new version 🔹 Implications of non-compliance 🔹 Key steps in the migration journey 🔹 Insights into common challenges 🔹 Pitfalls to avoid and proactive steps to ensure a smooth transition Register for this free online event now: https://lnkd.in/dXycGTHt

CyberCX's Alex Hoffmann says with more companies outsourcing key parts of their business processes and relying on third party companies, the reality is, all of this connectivity creates risk.   “We know that third party data breaches are something more and more companies are grappling with." Alex encourages organisations to ask themselves: 🔹 What data on our organisation, our staff, our customers do our third party relationships hold?  🔹 Is someone in our organisation actively monitoring this?  🔹 What protections and processes do we have in place to ensure this data is deleted when it's no longer required? "Simply put, whenever an organisation stores information, that information can be vulnerable to criminals," he warns. Read the full article in Club Management here: https://lnkd.in/dRdrvVVM

In our latest blog, CyberCX's Dustin Perkins shares some of the most notable changes to the NIST Cybersecurity Framework - a set of principals and best practices developed by the National Institute of Standards and Technology (NIST).   The NIST CSF provides companies with a framework to make it easier to understand cyber risks and improve their defences. The latest iteration, rebranded as NIST Cybersecurity Framework (CSF) 2.0, represents a significant overhaul, enhancing and improving the maturity of an already well established and widely adopted cyber risk management framework.    Find out more here: https://lnkd.in/dTJtxmNS

On International Women in Cyber Day, we're celebrating our finalists in this year's Australian Women in Security Awards.   CyberCX is excited to have finalists across five different categories, recognised for their outstanding contributions to the cyber industry. Congratulations to these individuals and teams:    🔷 Courtney Jones: Best Security Student 🔷 Melanie Youngson: Most Innovative Educator in Cyber Security 🔷 Jakub Zverina: Champion of Change 🔷 CyberCX Academy: Best Program for Empowering Individuals in Cyber Security 🔷 CyberCX Women in Cyber: Best Place to Work in Security   The awards will be presented at a gala event in Sydney on Thursday 10 October 2024. Best of luck to all our finalists!   #IWCD #IWCD2024 #WomenInCyber

CyberCX is advising customers that multiple global brands, including CyberCX, are being impersonated in a spam email campaign.   The campaign, which has been active for at least six months, refers to cyber security threats affecting the recipient and offers them a link to download security software. Emails closely mimic the impersonated organisations’ branding and ask recipients to click a link to download security software.   Watchpoints:  🔷 We will never send unsolicited emails asking you to download software. But criminals are using brand impersonation in spam and phishing emails, and they are becoming increasingly realistic.  🔷 Now’s a good time to remind your teams to “stop, think, and consider” before they click on links.

Join our upcoming webinar on Thursday 12 September to learn about new and important updates to ISO 27001, and how to plan your migration journey.   As host David Simpson will discuss, organisations wanting to maintain certification to ISO 27001 must transition to the new version by 31 October 2025.   "Like all frameworks, this standard is under continuous review to address changes in the global threat landscape," says David. "The latest version of 27001 was released in 2022 and targets a number of existing and emerging threats and technologies as part of the global certification framework."   Don't let your ISO certification lapse. Register for this free webinar:

CyberCX's Liam O’Shannessy told a special investigation from 60 Minutes that scammers are using artificial intelligence technology to convince victims they’re speaking to a real person.   Liam demonstrated live face-cloning technology that allows scammers to video call their victims – something that wasn’t possible a few years ago.   “We used to be able to tell people: ‘Hey, you’ve been chatting with this new friend overseas. It’s probably not that person. If you really believe it’s that person, get on a video call with them,' said Liam. “We can’t make that recommendation anymore." Read the full article and see Liam's demonstration here: https://lnkd.in/de922Rrv

CyberCX's Financial Services Lead Shameela Gonzalez joined the latest episode of Girls Talk Cyber to discuss one of the more unspoken about and underrepresented scam types - romance scams.    "It's a topic that's close to my heart because I wish that there was a way that we could encourage more victims to speak up about it, so that we could get better reporting numbers," said Shameela. "It's not just the volume of how many people would be able to come forward and report that they've been a victim of it, but that we can learn a little bit more about the tactics."   Shameela said the most worrying thing about romance scams is it carries a lot of personal humiliation and shame. "My message is, it absolutely shouldn't. But because I think it inherently does, it really restricts people from wanting to come forward."   "Information is powerful. We can only get smarter and better at being able to prevent against these if we know how they're happening." 

⚠ Organisations wanting to maintain certification to ISO 27001 must transition to the new version by 31 October 2025.   ISO/IEC 27001 is an internationally recognised risk-based standard, designed to help organisations continuously manage and uplift their security posture.   On 25 October 2022, the new ISO/IEC 27001:2022 standard was published, replacing the 2013 version that had remained in place for nine years. In February 2024, a further amendment was published to incorporate considerations for climate change as part of the new standard.   Read our blog to learn about the changes and how to transition to ISO 27001:2022: https://lnkd.in/ecn-j4RA

Alastair MacGibbon said CyberCX's discovery of the Green Cicada Network is one of the largest ever documented networks of inauthentic accounts found on a social media platform.   "This could be the first significant China-related information operation run by generative AI,” said Alastair.    The network of at least 5000 AI-run accounts on social media site X appears mostly focused on divisive US political issues as the country prepares for its presidential election in November.   CyberCX also picked up some Australia-focused activity, with the network spouting divisive content about nuclear energy, the embattled CFMEU and the government’s immigration policies.   Read more in the full article: https://lnkd.in/djwfJv_D