• Free CIO-level whitepapers



    [ad] Check out these whitepapers published by IDC and HP to help you make tough decisions about your IT environment.

    Leveraging the Always On support experience for IT transformation: This IDC whitepaper outlines the importance of support services in IT environments. IT organisations are now required to support everything from legacy systems and storage to virtualised configurations and cloud-based computing in complex, heterogeneous environments. The increasingly critical role of vendor-supplied external support services is discussed and highlighted in addressing these emerging IT environments going forward.

    Conquering the challenges of data center complexity: Virtualisation and cloud are two popular IT trends that lower costs and make computing more secure and efficient. However, they also add complexity. Read this thought leadership paper and learn new ways to conquer your data center complexity challenges.

  • Great articles on other sites

  • RSS Delicious/delimiterau


  • Save up to $200 on ThinkPad laptops



    [ad] Lenovo ThinkPad Edge laptops boast best-in-class voice and video conferencing capabilities to help you stay in touch and HDMI, stereo speakers and a HD screen to keep you entertained on-the-go. Grab this coupon and save up to $200 each on each laptop.

  • 5 months FREE on phone system rental



    [ad] Rent a new phone system and connect your phone lines with Commander to receive 5 months rent free. Why rent with Commander?

    -Tailored complete solutions
    -Great offers from leading phone system brands
    -Rental & communication on a single bill
    -Renting systems conserves cash flow

    Hurry – act before 30 June!

    • Enterprise IT - Written by on Tuesday, October 18, 2011 16:50 - 3 Comments

    First State rewards security tip with legal threat

    Tags: , , , , ,

    blog Whoah. It looks like Australian superannuation fund First State Super has had a massive, corporate-style over-reaction to a security analyst, Patrick Webster who politely let it know about an obvious, glaring security hole in its online platform.

    The full details have been published by Secure Computing Magazine (and we recommend you also check out their earlier article here). But basically it looks like it’s a case of the poor analyst reported the flaw, was politely thanked by First State, and then had his details summarily handed over to the cops, who showed up on his doorstop shortly after. Further information comes from security podcast Risky.Biz, which reports:

    “Perhaps instead of contacting the law, First State Superannuation would have done well to send Webster, who ironically enough spent much of his career working in information security for NSW Police, a nice bottle of single malt and a sun hat.”

    We agree. Surely there is someone with an iota of sense in First State Super? Anyone? Someone, perhaps, who could listen to the NSW Police on this matter, which has decided to take no action on the issue, describing Webster as “a civic-minded person”?

    Related posts:

    1. Legal threat: Cudo warns deals aggregator site
    2. WA Auditor slams agencies’ woeful IT security
    3. NSW Govt can’t guarantee IT security
    4. Vodafone investigates reported security breach
    5. Hacks focus CIOs on IT security
    		 submit to reddit Print Friendly and PDF

    3 Comments

    You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

    1. Anonymous
      Posted 18/10/2011 at 4:57 pm | Permalink | Reply

      Reading the article on The Age about this he apparently made a script to go through and download details of people from the site.

      Which I’d say where the issue actually is.

      It also may just be policy to report all security breaches to the Police. Even if he did have good intentions it still was a security breach

      • Renai LeMay
        Posted 18/10/2011 at 4:58 pm | Permalink | Reply

        It does sound like he went a bit far beyond the call of duty … but I’d still say First State should award the guy a little more cred, given he used to work for the police himself.

      • Goku Missile Crisis
        Posted 19/10/2011 at 9:47 am | Permalink | Reply

        What if this was a real-world security breach? I think the equivalent would be ringing their call centre repeatedly, trying different member numbers to identify oneself, and noting how many times the phone monkey on the other end gave up a real customer’s policy details. Would that be worthy of punishment? Not if the prank-caller was benign, and let the company know about the problem. Hysteria around information security is what keeps the good guys from wanting to help!

    Leave a Comment

    Comment

    Get our daily newsletter

    Get our new articles every day by signing up to our daily newsletter.

    Email address:



  • Anonymous tips

    Got some inside information on something that should be made public? Use our anonymous tips form. Even Delimiter won't have a clue as to your real identity.

    • Most Popular Content


  • Three lessons ING's private cloud teaches us
    sponsored post ING Direct recently implemented a private cloud solution to virtualise its entire banking platform, allowing it to provision a new copy of itself -- a so-called 'bank in a box' -- within minutes. Here's three things other organisations can learn from this interesting deployment.

  • Enterprise IT news & views

    • The ABC didn’t sack Bitcoin miner dollar-coin

      The Australian Broadcasting Corporation didn’t fire an un-named IT worker who attempted to use the broadcaster’s vast server infrastructure to make himself a fortune through the Bitcoin virtual currency system, it has emerged, with the employee merely being disciplined and having their access to certain IT systems restricted.

    • Victoria dumps HealthSMART e-health project pills-2

      The Victorian State Government has reportedly decided to walk away from its troubled central electronic health project HealthSMART, which has reached only a limited number of its goals over the past decade since it was initiated, despite soaking up several hundred million dollars worth of government funding.

    • HP completes giant new NSW datacentre 1

      Global technology giant HP has finished building its colossal $119 million new datacentre in Western Sydney and will launch the “world-class” facility next month, with a speech slated to be given by Communications Minister Stephen Conroy.

    • Microsoft beats Salesforce to utility CRM deal microsoft1

      Energy retailer Australian Power & Gas has picked Microsoft’s Dynamics CRM system over rivals Salesforce.com and Right CRM as the base platform for a customer relationship management overhaul to tackle incoming email complaints.

    • NSW finalises colossal datacentre consolidation cableguy

      The New South Wales State Government this week announced the Leighton subsidiary Metronode as the winner of its long-running and wide-ranging datacentre overhaul project, with the company to construct two new substantial facilities which will allow the state to consolidate its IT operations drastically.

    • Two good Australian CIO interviews IT-manager-cio

      There have been a couple of good interviews with Australian chief information officers done by various media outlets over the past couple of days — good enough that we thought them worth highlighting to readers on Delimiter.

    • Three lessons ING’s private cloud teaches us Cloud computing

      If you could provision a new copy of your organisation’s entire internal application environment for development purposes in just ten minutes, and you could do whatever you liked with it, what sort of new systems and processes would you build?

    • SAP considers Aussie datacentre sap1

      The Financial Review has reported that German software giant SAP is likely to build an Australian datacentre to provide services to Australian organisations, should new privacy legislation pass that could affect vendors’ ability to sell cloud computing services locally from global facilities.

    • Enterprise IT, News - May 21, 2012 13:32 - 15 Comments

    The ABC didn’t sack Bitcoin miner

    More In Enterprise IT


    Blog Enterprise IT

    News, Telecommunications - May 21, 2012 10:48 - 5 Comments

    iiNet ramps up Internode digestion

    More In Telecommunications


    News Telecommunications

    Gadgets, News - May 21, 2012 12:32 - 5 Comments

    Galaxy S III listed for Telstra, Optus and Vodafone

    More In Gadgets


    Blog Gadgets Intellectual Property

    Reviews - May 7, 2012 18:16 - 2 Comments

    Telstra Mobile Wi-Fi 4G: Review

    More In Reviews


    Reviews