Two research consultants with Accuvant Labs have recently discovered a security vulnerability that affects over 2 BILLIONphones! The vulnerability, which they will officially present later this week at the Black Hat security conference, involves an open-source device management tool, which used by many many vendors and carriers for OTA updates, remote device wipes, and more. This is something important, because mobile phones, devices are becoming part and parcel of our daily lives, even more so in the enterprise world with BYOD (Bring Your Own Device). Continue reading
On 11th December 2013, Nanyang Polytechnic’s ISACA group celebrates its ISACA day 2013. Over 100 students from our school attended the event.
For this year’s ISACA day, it was our pleasure to have Mr Mark Ames, a director from the ISACA Singapore Chapter, Mr Ho Shee Yan Senior Assistant Director (Internal Audit), Supreme Court and Mr Ma Zixuan, a technical specialist from Centre for Strategic Infocomm Technologies (CSIT) who shared with us their interesting experiences they had in their information security careers. We had also unveiled the winners for the BlackOPSCTF, a Capture-The-Flag competition, which raised awareness of the various threats and vulnerabilities that exist in real life environments and thus underlining the importance of information security audit.
The event started off with Mr Mark Ames who talked about ISACA privileges and challenges. He strongly encouraged the students to pursue a membership in ISACA, as it will help them to further their careers as IT Professionals.
Following the talk by Mr Mark Ames, we have Mr Ho Shee Yan to talk about his field of expertise in System Audits. Mr Ho gave us great insights about the risk management framework and highlighted common information security control issues faced by organisations. Mr Ma Zixuan, on the other hand, shared with us about life goals and his experiences in CSIT. Mr Ma had also shown an animation video about CSIT organization and the way they would handle an attack by a hacker. He also highlighted the importance it is for different departments to collaborate in order to minimise the impact of the attack effectively. It was really an eye-opener to be able see the different aspects of information security from our two guest speakers.
After the short break, Mr Chia Yong Xiang, President of NYP ISACA student group, shared the solutions to some interesting challenges in the BlackOpsCTF competition. After which the winners for BlackOpsCTF were announced. The following are the results for BlackOpsCTF. Congratulations to all winners!
Champion Team FLG: Goh Jun Jie | Lim Jie Yu Harold | Lee Kian Lon
1st runner-up 434a42: Lim Kian Hock Bryan | Kok Jian Hui | Soh Jason
2nd runner-up PARPKz: Ang Wei Ming | Lim Kian Hong | Lee Yu Choy Jackie
3rd runner-up Red Rangers: Yeo Cheng Hong | Mohd Aslam
4th runner-up Praesto: Yu Peng Fei | Tan Chee Wei | Juliana Seng Mei Feng
We would like to express our gratitude to our guest speakers (Mr Mark Ames, Mr Ho Shee Yan and Mr Ma Zixuan) for taking time out of their busy schedule to talk to us and the Centre for Strategic Infocomm Technologies (CSIT) for sponsoring the prizes for the BlackOpsCTF competition. We would also like to thank all the people that offered their helping hand in the BlackOpsCTF competition and ISACA Day especially Hanif Abd Latif, Daren Lok, Norman Yeo, Alvin Lee, Joshua Sim and Elgin Lee.
Subscribe to our blog and stay tune for more other events or check out our Facebook page at: https://www.facebook.com/groups/isacanyp/