Menu
New CERT NZ report shines a light on vulnerabilities

New CERT NZ report shines a light on vulnerabilities

Better data enables more granular reporting of Kiwi threat landscape

Opened last year, CERT NZ has quickly established itself as the go-to agency for cyber security

Opened last year, CERT NZ has quickly established itself as the go-to agency for cyber security

Credit: Dreamstime

The latest threat report released by CERT NZ shows 736 cyber security incidents, the largest volume so far for a single quarter, with 112 of those referred to the Police.

"The rising number of reports we are seeing demonstrates the growing level of trust for CERT NZ as a central front door for cyber security issues,” said CERT NZ Director Rob Pope.

CERT NZ's latest report includes deeper analysis and categorisation of reported vulnerabilities - 69 vulnerability reports were received over quarter one and two of 2018, with 15 handled under CERT NZ's coordinated vulnerability disclosure policy (CVD).

Vulnerability reports were received across a range of categories, including websites (54 per cent), authentication, authorisation and accounting (14 per cent), and networking (13 per cent).

Phishing scam reports were up significantly to 455 in the period from 1 April to 30 June, from 196 in the first quarter.

Incidents reported by category in Q2Credit: CERT NZ
Incidents reported by category in Q2

CERT NZ said the increase was the result of closer collaboration with the financial sector and has helped paint a better picture of the phishing campaigns constantly targeting New Zealanders.

Meanwhile, 68 per cent of the cyber security losses reported were for small amounts, typically less than $500 and, once again, those over 55 made up the largest age group reporting, accounting for three quarters of reported losses.

In one incident, CERT NZ received a report from an online e-commerce store that had repeatedly suffered breaches over the course of a year.

Those breaches led to customers being tricked into paying money into the attacker’s bank account, even though customers were using the store’s real website. In some cases, the attacker even sent customers goods to try and hide their activities.

Despite a specialist IT services company being hired to improve the website’s security, the attacker kept returning and compromising it.

“We were able to help them identify the key areas where their website’s security was falling short and to understand why these weaknesses hadn’t been resolved by their temporary and partial fixes,” said Pope. “With guidance from our team, they were able to take steps to resolve the weaknesses and keep the attacker out for good.

“It’s information from cases like this that enable us to create data-driven content that helps Kiwis stay resilient to cyber security threats."

The CERT NZ guide to securing business websites is available here.


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags Vulnerabilitiesphishinge-commercecyber securityCERT NZ

Featured

Slideshows

Leading female front runners of the Kiwi ICT industry honoured at 2019 WIICTA

Leading female front runners of the Kiwi ICT industry honoured at 2019 WIICTA

Reseller News has honoured the leading female front runners of the New Zealand ICT industry at the 2019 Women in ICT Awards (WIICTA) in Auckland. The awards recognised standout individuals across six categories, spanning Entrepreneur, Rising Star, Shining Star, Community, Technical and Achievement. Photos by Gino Demeer.

Leading female front runners of the Kiwi ICT industry honoured at 2019 WIICTA
Reseller News kicks off awards season in 2019 with Judges' Lunch

Reseller News kicks off awards season in 2019 with Judges' Lunch

The 2019 Reseller News Innovation Awards has kicked off with the Judges Lunch in Auckland with 70 judges in the voting panel. The awards will reflect the changing dynamics of the channel, recognising excellence across customer value and innovation - spanning start-ups, partners, distributors and vendors. Photos by Christine Wong.

Reseller News kicks off awards season in 2019 with Judges' Lunch
Reseller News welcomes industry figures for 2019 Hall of Fame lunch

Reseller News welcomes industry figures for 2019 Hall of Fame lunch

Reseller News welcomed 2018 inductees - Chris Simpson, Kendra Ross and Phill Patton - to the third running of the Reseller News Hall of Fame lunch, held at the French Cafe in Auckland. The inductees discussed the changing landscape of the technology industry in New Zealand, while outlining ways to attract a new breed of players to the ecosystem. Photos by Gino Demeer.

Reseller News welcomes industry figures for 2019 Hall of Fame lunch
Show Comments