We help prominent brands, leading agencies and the brightest startups in Australia and across the world manage digital risks and increase trust.
Blog
Our rambles and rants. Hopefully informative and on occasion, somewhat amusing.
Rotting fish: The need to improve cyber culture
Pete was right (but just this time)
Parenting under the influence of the internet
Of Mice and Coin
PAW 2021 – That’s a wrap
Privacy in focus: Towards a unified privacy regime
Is it app-ropriate to require personal information for parking?
Privacy in focus: A pub test for privacy
Future Privacy: A tipping point for tech
Patch me if you can: key challenges and considerations
News round-up March 2021 — That horrible Exchange compromise, IOT security threats made real and digital platforms’ latest privacy challenges
Privacy in focus: The consent catch-22
Patch me if you can: the six steps of vulnerability management
Privacy in focus: What’s in a word?
Standards – huhh! – what are they good for?
Patch me if you can: the importance of vulnerability management
elevenM turns five
Privacy in focus: Who’s in the room?
When your milk comes with a free iris scan
News round-up February 2021 — Downplaying data breaches, escalating ransomware tactics and “there’s something in the water”
Start the chat
Privacy in focus: A new beginning
Privacy, COVID and vulnerable communities in the golden city
News round-up Jan 2021 — SolarWinds hack, the need for robust external security assurance, and a community demand for privacy
The five trends driving ransomware tactics
End of year wrap: What the Four Seasons Total Landscaping debacle taught us about privacy and security
Is supplier risk management useless?
News round-up Dec 2020 – Escalation in ransomware tactics, world-first privacy settlement and more
Privacy in Australia: what’s around the bend?
News round-up Nov 2020 – Privacy Act review, ICO fines British Airways £20m over data breach and more
News round-up Oct 2020 — Update on ServiceNSW databreach, Twitter upping its security game, and more
News round-up Sept 2020 — Thousands of licence details exposed online, HeathEngine to pay $2.9mil, and more
What non-mask wearers teach us about security awareness
News round-up July 2020 — European court decision on international data transfers, software vulnerabilities, and more
News round-up June 2020 — PM’s cyber strategy announcement, ransomware attacks and email scammers
News round-up May 2020 — Ransomware formally registered as business risk and security report on cyber attackers
Towards a trustworthy COVIDSafe app
News round-up April 2020 — Privacy and security issues with COVID-19
Four principles for contact tracing technology
News round-up March 2020 — COVID-19 influence on cyber security, privacy and digital risk
News round-up February 2020 — Privacy priorities and on-selling data
2019 end of year wrap
News round-up December 2019 — Ransomware attacks, phishing and online data breaches
Privacy: The moral guidepost for a just society
elevenM’s submission to Australia’s 2020 Cyber Security Strategy
Sustaining the value from your security tools
Getting value from your security tools
Solving ransomware
GovHack: a lesson in optimism
The unfairness of cyber awareness
Parenting, privacy and the future
Mr Dutton, we need help with supplier risk
Let’s take this seriously
Anti-Automation
Happy birthday Notifiable Data Breaches Scheme. How have you performed?
The difference between NIST CSF maturity and managing cyber risk
Our thoughts on the year ahead
End of year wrap
Lessons on managing a data breach crisis (from an amateur conference organiser)
APRA gets $60m in new funding: CPS 234 just got very real
Up close and personal with the Singaporean Cybersecurity Act
Introducing our free data breach notification tool
The journey toward trust – Part 3: Trust through reputational management
The journey toward trust – Part 2: Trust through regulatory compliance
The journey toward trust – Part 1: Understanding trust
What does the record FCA cyber fine mean for Australia?
You get an Aadhaar! You get an Aadhaar! Everybody gets an Aadhaar!
The week in review – Oct 1, 2018
Don’t call me, I’ll call you
Nine steps to a successful privacy and cyber security capability uplift
Musings on the OAIC’s second Notifiable Data Breaches report
GDPR is here
5 things you need to know about GDPR’s Data Protection Officer requirement
Our view on APRA’s new information security regulation
In Privacy Awareness Week, will Australia follow the GDPR?
Facebook and Cambridge Analytica: Would the GDPR have helped?
8 steps to a threat based defence model
A Lesson in Data Privacy: You Can’t Cram for GDPR
Head to Head: the GDPR and the Australian Privacy Principles – Part 2: A Tale of Two Jurisdictions
Head to Head: the GDPR and the Australian Privacy Principles – Part 1: The long arm of the law
Melanie spoke to Bloomberg about driving competitive advantage from GDPR compliance
