Liam Tung

CSO Journalist

Liam Tung is a seasoned CSOonline.com tech reporter who's been covering cybersecurity, privacy, business, and legal issues that shape the tech industry in the US, Europe and Australia. Over the past decade, his work has frequently been distributed on influential tech news aggregator sites including Techmeme, Reddit, and Hacker News, the news-sharing site run by Silicon Valley accelerator, Y Combinator. Liam has worked with IDG Australia's CSOonline.com since 2011 and today remains one of its key contributors, offering news and insights into the latest ransomware threats from cybercriminals and government surveillance, as well as new initiatives from government cybersecurity agencies and global tech giants, including Google, Microsoft, Amazon, Facebook, Oracle and the many companies and organizations that specialize in cybersecurity. He's always on the lookout for the latest information about vulnerabilities and cyberattacks that could compromise the integrity of your data.

Toll Group: 11 days after ransomware attack key IT systems still offline

Toll Group: 11 days after ransomware attack key IT systems still offline

Toll Group today said it’s still working to restore key online systems some 11 days after taking core IT systems offline to mitigate a Mailto ransomware infection.   The Japan Post-owned Australian logistics firm however suggested...

Update: Toll says IT systems infected by new variant of ‘Mailto’ ransomware

Update: Toll says IT systems infected by new variant of ‘Mailto’ ransomware

Australian logistics and delivery firm Toll has confirmed the ransomware attack that forced it to take its IT systems offline was a new variant of the Mailto ransomware. Toll Group took some key IT systems offline last Friday...

Toll confirms ransomware behind IT shutdown

Toll confirms ransomware behind IT shutdown

Australian logistics and delivery firm Toll on Tuesday confirmed it took core IT systems offline in to mitigate a “targeted ransomware” attack.  Toll on Monday revealed it took IT systems offline to contain an cyberattack but on...

Australia’s Toll shuts down IT systems to contain cyber attack

Australia’s Toll shuts down IT systems to contain cyber attack

Australian logistics and delivery giant Toll Group has shut down some IT systems in response to cyber security attack. 

ASD: Here's how you harden Windows 7 machines after Microsoft's cut-off

ASD: Here's how you harden Windows 7 machines after Microsoft's cut-off

The Australian Signals Directorate’s Australian Cybersecurity Security Centre (ACSC) has published a new paper explaining why and how admins can harden Windows 7 PCs against cyber attacks.

Aussie police usage of new anti-encryption laws is on the rise

Aussie police usage of new anti-encryption laws is on the rise

Australian law enforcement didn't widely use new powers under the late-2018 Assistance and Access Act in the first half of 2019, but usage more than doubled in the second half of 2019.

Citrix races out more patches to fix critical bug, plus a free detection tool

Citrix races out more patches to fix critical bug, plus a free detection tool

The detection tool however won’t detect all compromises.

Microsoft accidentally exposed 250 million customer support records online

Microsoft accidentally exposed 250 million customer support records online

Even Microsoft isn’t immune to security blunders due to misconfigured databases.  Microsoft today revealed it had briefly exposed its internal customer support database on the web, potentially giving anyone access to over 250...

New Google Chromebooks to get 8 years of security and feature updates

New Google Chromebooks to get 8 years of security and feature updates

As Microsoft kills off free Windows 7 support, Google has announced that all new Chrome OS-based Chromebooks from 2020 and beyond will get eight years of security and feature updates.  Google announced the increased support...

Citrix issues ADC patch amid new attacks, pushes forward more patches

Citrix issues ADC patch amid new attacks, pushes forward more patches

US enterprise virtualization firm Citrix has shipped patches for a critical vulnerability that is being actively exploited and accelerated additional patches for other affected products.  The first round of patches arrives amid...

Microsoft’s offers Application Inspector to probe untrusted open source code

Microsoft’s offers Application Inspector to probe untrusted open source code

Microsoft has released the Microsoft Application Inspector, an open source .NET Core command-line tool for Windows, Linux and macOS that developers can use to analyze third-party open source software components for newly added...

Microsoft: Chromium Edge for Windows 7 and 10 is here with new bug bounty

Microsoft: Chromium Edge for Windows 7 and 10 is here with new bug bounty

A day after Microsoft served up its last security patches for Windows 7, the company released its new Chromium-based Microsoft Edge browser that supports Windows 10, Windows 8.1, and Windows 7.  Microsoft announced the Microsoft...

First 2020 Windows 10 patch: NSA predicts rapid attacks on “severe” crypto bug

First 2020 Windows 10 patch: NSA predicts rapid attacks on “severe” crypto bug

Microsoft has released a patch for a spooky flaw in a core Windows cryptographic software library that allows an attacker to forge a code-signing digital certificate to sign malware. That means an attacker can pass off ransomware...

25,000 Citrix servers vulnerable to flaw as exploit code released

25,000 Citrix servers vulnerable to flaw as exploit code released

Patches won’t be available under late January. 

UK’s Travelex hit by ‘big game’ REvil ransomware attackers

UK’s Travelex hit by ‘big game’ REvil ransomware attackers

Patch your Pulse Secure VPN server.

Microsoft: these are the most cunning phishing attacks we spotted in 2019

Microsoft: these are the most cunning phishing attacks we spotted in 2019

Microsoft saw phishing attacks reach new heights of creativity and sophistication in 2019.

Microsoft patches Win32k zero-day in second last Patch Tuesday for Windows 7

Microsoft's December Patch Tuesday brings fixes for 36 vulnerabilities, including one that's already under attack.

Microsoft: actually IT admins are also to blame for phishing attacks working against users

Microsoft: actually IT admins are also to blame for phishing attacks working against users

And Microsoft is offering new tools help admins fix their own faults.

US charges Dridex banking trojan operators, offers $5m bounty

US charges Dridex banking trojan operators, offers $5m bounty

UK National Crime Agency claims it's identified the operator behind the world's worst cybercrime group.

Developers attacked: Two Python package trojans spread via popular PyPI website

Developers who use Python in open source projects should check they haven't downloaded these two malicious software libraries.

Load More