Infosec; blue & red. Mostly blue
From LINUX.CONF.AU 2018
What
Lets get together and discuss FOSS friendly infosec tools
Blue = Defensive Red = Offensive
Next month the mandatory data breach legislation kicks in. Most Au SME are not ready. Let's discuss some tools that may assist, or other things. :)
When
Thursday Lunch CB11.00.100
Who
This content has been purged for archival purposes.
Tools mentioned
* Misp * Ossec * fail2ban * Suricata * Bro * Snort * IntelMQ * CIRCL - Computer Incident Response Center Luxembourg projects on github * binwalk * security onion
Mandatory data breach legislation in Au
The Notifiable Data Breaches (NDB) scheme is a new set of laws. Legislation has been passed which adds a Privacy Amendment to the Australian Privacy Act establishing the Notifiable Data Breaches (NDB) scheme in Australia.
Very rough points of interest
* Applies to Australian Government agencies, businesses and not-for profit organisations that have an annual turnover of more than $3 million, plus; private sector health service providers, credit reporting bodies, credit providers, entities that trade in personal information and tax file number (TFN) recipients. * Fees for failure to comply: * Individuals (key employees) - up to $360,000 * Entities - up to $1.8 million. * Entities must investigate & assess any suspected data breach within 30 days * Entities are required to have prepared a data breach response plan (aka incident response plan) * Breaches containing info that may cause 'serious harm' must be disclosed to: * Affected individuals * Office of the Australian Information Commissioner (OAIC)
Some related links for reference:
* Notifiable Data Breaches (NDB) scheme * Entities covered by the NDB scheme * Legislation - Privacy Amendment (Notifiable Data Breaches) Act 2017
* Guide to securing personal information * Guide to developing a data breach response plan * Data breach notification — A guide to handling personal information security breaches * Notifiable Data Breaches flow chartPDF
* Privacy business resource 18: Privacy and start-up businesses * Are Australian startups prepared for data breach notification changes? * New Australian Mandatory Data Breach Notification Legislation
