Security Leftovers
-
OldGremlin, which targets Russia, debuts new Linux ransomware [Ed: Tries to associate a Windows problem, ransomware, with "Linux", even though it's hard to actually install this thing on GNU/Linux]
It is one of the few ransomware groups in the world that prefer to target Russian organisations, but this may change experts advise
-
iTWire - EnergyAustralia portal compromised, details of 323 customers leaked
Electricity and gas retailer EnergyAustralia has disclosed a breach of its MyAccount platform, which the company says affected 323 small business and residential customers and was automated through use of a bot.
The company has now implemented 12-character passwords for MyAccount users which should have a mix of capital and lowercase letters, numbers and special characters. Prior to the incident, eight-character passwords with a mix of capital and lowercase letters and numbers were used.
In a statement issued on Friday, the company said the breach had taken place on 30 September and it informed customers the following Sunday. The platform was taken offline after the breach was discovered.
-
iTWire - Govt to increase fines for data breaches to $50m, says Dreyfus
The Federal Government says it will put in place legislation to increase penalties for repeated or serious privacy breaches.
In a statement issued on Saturday, Attorney-General Mark Dreyfus said the fines would rise from the existing $2.22 million to one of three higher amounts.
The government move comes a month after telco Singtel Optus announced a massive breach of its systems.