BrickerBot kiss of death to IoT devices

Reports surfaced on the 12th of April of a botnet that attacks IoT running BusyBox and other Linux-based devices. The bot, which is believed to be active since the 20th of March 2017, exploits hard-coded passwords of devices with published SSH or telnet, as well as attempting to brute-force passwords of devices with non-default credentials. As the name suggest, BrickerBot bricks the devices and leaves them completely useless. This is done by executing a set of commands to delete storage, corrupt routing and others.

Read More


The Human Factor

Last week Verizon published its Data Breach Investigations Report (DBIR) 2013. This years report presents Verizon’s analysis of 47,626 security incidents.

Read More


The EQC Privacy Breach – Where’s the Risk Management?

On Friday, Ian Simpson the Chief Executive of the Earthquake Commission (EQC) held a media conference and announced that a staff member had accidentally sent an email with an attachment containing a spreadsheet with the details of 9,700 Christchurch residents and their claims, to a recipient outside of the organisation.

Read More