Iron Bastion Security Blog

The 4 Deadly Technology Sins of a Small Business

Why is it so that SMBs are so vulnerable to technology issues? We explain what the leading IT and cybersecurity risks of any small business are, and how a managed IT services provider can help business owners address them.

Technology

5 Reasons Why Your Small Business Should Outsource IT

IT outsourcing is an ever-increasing practice within the professional services sector. If your business is spending too much on managing email accounts, servers, printers, and telephones, it is time to consider getting external help from the professionals.

Security

Owning Your Legal Practice's Cybersecurity – MSPs and You

Law practices should be aware of the cyber risks associated with IT, as a security breach involve financial and reputational damages, and legal liabilities. Read what the six questions are that every legal professional should ask from their managed IT services provider to avoid a data breach.

Security

Together for a better internet on Safer Internet Day

Iron Bastion is supporting Safer Internet Day and we encourage you to join in! Safer Internet Day is an opportunity to raise awareness about the safe and positive use of digital technology, and to explore the role we can all play in creating a better and safer internet in our community.

Training

How to Run Effective Security Awareness Training for your Organisation

Ever wondered how you can deliver security awareness training to staff in your organisation that they will love? In this article, we reveal the techniques we find useful in our training sessions.

Shopping

Our Internet Security Online Store is Now Open. Antivirus, Phishing Protection and More!

We're pleased to announce our new webshop offering antivirus and internet security solutions for homes and small businesses. Buy the latest cyber security products from the experts.

Security

Preventing Business Email Compromise Fraud at Your Business

What can business owners do to protect their organisation from Business Email Compromise fraud? Download our slide deck from the ISACA event to find it out.

Phishing

What Phishing Campaigns Have in Common with the Cocos Islands?

Phishing is one of the main reasons why Australian businesses are getting hacked. What has an exotic paradise in the middle of the Indian Ocean to do with cyber crime? Iron Bastion experts explain how Cocos (Keeling) Islands enables criminals to defraud organisations and individuals worldwide.

Security

Your Definitive Guide to Information Security Conferences in 2019

Are you a hacker or an information security professional looking for conferences down under? Our non-comprehensive list features the major cyber events Australia has to offer in 2019.

Security

Phishing Is the Top Reason Behind Australian Data Breaches

The latest Notifiable Data Breaches Quarterly Statistics Report confirms that Australian legal practices are at risk of cybercrime with phishing as the main threat.

Training

Defending Your Organisation in the Age of Phishing with Training Courses and Technology

Phishing attacks are the cause of over 90% of data breaches in Australia. This article explains how businesses can combat phishing with the combination of information security awareness and anti-phishing technologies.

Phishing

Don't Be the Next Business to Fall Victim to a Data Breach

Ninety per cent of data breaches begins with a phishing attack and email scams cost Australian businesses $22 million a year. But what is phishing and how does it differ from spam?

Security

Professional Help Needed for Law Firms Still Vulnerable to Phishing Attacks

Many of the leading law firms are failing set-up the anti-phishing solution correctly at their end, leaving them open to cyberattacks including phishing, payment redirection fraud and Business Email Compromise (BEC) fraud – our latest report can reveal.

Security

Setting Up an Email Server for the Direct Email Spooling Attack (How-to Guide)

This how-to guide aims to demonstrate how easy it is to circumvent expensive email security solutions with simple open-source tools. Email administrators can also follow this guide to build their email delivery service for email direct spool attack security assessments.

Security

Discovering Hidden Email Gateways with OSINT Techniques

In this article, we elaborate how we managed to identify hidden internal email servers by relying on various open-source intelligence (OSINT) data sources for our direct email spool attack research.

Security

How to Evade Expensive Phishing Filters with One Simple Trick

One in three Australian law firms are susceptible to a cyber threat called “direct email spool attack”, our report can reveal. This attack technique bypasses expensive email security solutions, rendering them completely useless and exposing the affected organisations to cybercrime.

Phishing

Five Ways to Identify Phishing Emails

As phishing emails come in different shapes and formats, there is no silver bullet to identify a phishing email. However, there is a collection of red flags you should be looking for before clicking on a new message. Here is our up-to-date guide to help you recognise the latest email-based scams.

Security

Why multi-factor authentication on the PEXA platform leaves security concerns?

PEXA introduces multi-factor authentication to combat payment redirection fraud but leaves security concerns due to SIM swapping attacks.

Security

PEXA Introduces Multi-Factor Authentication but More Guidance Needed

Iron Bastion cybersecurity experts see a problem with PEXA offering the SMS option given how easy it is for hackers to hijack SMS messages.

Security

How Abandoned Domain Names Pose a Major Cyber Risk to Your Business

Iron Bastion’s cybersecurity expert Gabor Szathmari, recently published novel research on abandoned internet domains, and how they are a significant cyber risk which threatens businesses and in particular the Australian legal profession.

Conveyancing

ARNECC, ELN, ELNO, ECNL, PEXA – The Alphabet of Electronic Conveyancing

In this article, we explain the basics of electronic conveyancing and what cybersecurity challenges other conveyancing platforms were facing overseas.

Security

Hacking Law Firms with Abandoned Domain Names

This research report demonstrates how domain name abandonment poses a significant cyber threat to the legal profession and other businesses. This report also makes recommendations as to measures legal practices and other businesses can take to stop this threat.

Security

Why You Need Professional Email Hosting for Your Business

In this article, we explain how basic email hosting providers can put your business at risk of cyber attacks and why you should consider migrating to a professional email service.

Conveyancing

Our Slides from the AIC NSW Cyber Security Seminar

We were honoured to be invited to the AIC NSW Cyber Security Seminar last week. On this two-hour session, the audience had the opportunity to look at the recent cases of cyber fraud against conveyancing practices, and what steps they can take to guard against being affected.

Conveyancing

Is Your Conveyancing Practice Secure From Hacking?

The recent media reports of fraud against conveyancing practices suggest that professionals should be taking measures for protecting their businesses from cyber attacks. Cybercriminals primarily rely on an email-based attack know as phishing to help commit payment redirection fraud.

Subscribe to Iron Bastion Security Blog