Weak passwords, unlocked devices and disabled security software can make your data vulnerable. But leaving a laptop in a car where opportunistic thieves (or serious criminals) can access it will make security pros pull their hair out. In related news, it seems a Secret Service agent will be staying back after work for some extra security training this week...


Intel is offering up to US$30,000 to researchers and investigators who detect flaws in their software, firmware and hardware. Following on from Microsoft's announcement of an expansion of their bug bounty program, it seems to be a good time to get into the bug bounty hunting business.


While we often get hung up on matters of privacy and security when it comes to the actions of governments and law enforcement, there’s also the matter of privacy at work. Can your boss snoop on your email? What about CCTV footage? How about listening into phone calls? Legislative and ethical challenges abound.


We all the know the MO of threat actors who distribute malware. Deliver a nasty payload, wait for the victim to click and lock up their files, demand payment and wait for the bitcoin to flow. But some bad guys are turning to snitching in lieu of payment.


When I started working in IT, back in the 1990s, our primary focus was on reliability first and performance second. Viruses were on the scene - Word macro viruses like Melissa were probably the most significant threat of the day. But as long as our anti-virus software was up to date things were pretty good. Then the world changed.


IT security is something that organisations can't afford to ignore. With Australia set to introduce mandatory data breach notification laws, the need for local organisations to up their security game is only going to increase. Penetration testers (pen testers) are IT professionals that assume the role of an external or even internal threat to help organisations identify security weaknesses. It's a profession that is in high demand, by employers and job seekers. But what makes a good pen tester? We asked Nuix chief information security officer Chris Pogue.