The holidays in security: Breaches drive governments to bug bounties

Australia may have taken it easy for the holiday season, but hackers weren’t easing off during the festivities.

There were attacks, for example, on [[xref: |several major US newspapers]] while nation-state attackers [[xref: |were fingered]] for exploiting a bug in Twitter’s anti-trolling tools.

US authorities [[xref: |charging two Chinese nationals]] for massive data thefts from NASA and other firms – also drawing the ire of Australian authorities, who [[xref:| charged China]] with backing the campaign of intellectual property theft and managed service provider hacking.

These and other breaches followed on from [[xref: |a recent leak]] that affected 52 million Google+ and G Suite users, and revelations that [[xref: |Facebook provided]] Microsoft, Amazon and Yahoo with special access to its users’ data.

It wasn’t the best leadup to a year that [[xref: |is already expected]] to pose new challenges and frustrations for CISOs – least of all, compliance with 2018-era legislation that [[xref: |continues to challenge]] many organisations’ existing privacy practices.