News
Security policy and user awareness
-
October 04, 2021
04
Oct'21
Two arrests made in European ransomware investigation
Unnamed ransomware operation was disrupted last week in Kiev, Ukraine, following a coordinated investigation
-
October 01, 2021
01
Oct'21
Amnesty International exploited in malware campaign
According to new intelligence from Cisco Talos, Amnesty International’s branding and profile is being used as part of a new malware campaign that exploits people’s fears of the notorious Pegasus spyware app
-
October 01, 2021
01
Oct'21
JVCKenwood hit by Conti ransomware attack
Nearly 2TB of data was stolen from Japanese electronics firm in a Conti ransomware hit
-
September 30, 2021
30
Sep'21
UK consumers would collectively pay over £1bn a year for control of their data
UK consumers are willing to pay a small fee per month to have control of the data they share with Google and Facebook
-
September 29, 2021
29
Sep'21
FoggyWeb malware latest tool of dangerous Nobelium APT
Microsoft’s threat intelligence team warns of a new strain of malware being used by the Russia-linked Nobelium APT
-
September 29, 2021
29
Sep'21
The Security Interviews: How SolarWinds came through its darkest hour
In his first major UK press interview, SolarWinds CEO Sudhakar Ramakrishna tells Computer Weekly how a relentless focus on transparency saw the company safely through a nightmare cyber breach scenario
-
September 28, 2021
28
Sep'21
How one red team exercise averted a new SolarWinds-style attack
Palo Alto Networks shares details of how its red teamers found and sealed a customer vulnerability that could have led to another SolarWinds-style supply chain attack
-
September 27, 2021
27
Sep'21
Women and BAME people bear brunt of cyber crime impact
Cyber crime has a disproportionate impact on women and BAME people, according to a new report
-
September 26, 2021
26
Sep'21
What it takes to attract and retain women in cyber security
The narrowing gender gap may be a cause for cheer, but more needs to be done to curb discrimination, and attract and retain women for cyber security roles in Asia-Pacific
-
September 24, 2021
24
Sep'21
How Australia punches above its weight in cyber security
Australia is playing to its strengths in niche areas such as governance and deep tech to punch above its weight in the cyber security industry
-
September 23, 2021
23
Sep'21
Fresh alert over Conti ransomware surge
Conti ransomware crew appears increasingly active, prompting fresh warnings from the US authorities
-
September 23, 2021
23
Sep'21
Threat actors target VMware vCenter Server users
Users of VMware vCenter Server are advised to patch a series of vulnerabilities post haste
-
September 21, 2021
21
Sep'21
US sanctions Suex crypto exchange over ransomware links
US Treasury cracks down on cryptocurrency exchange that supposedly facilitated proceeds from multiple ransomware gangs
-
September 21, 2021
21
Sep'21
Investigation launched after MoD email blunder
Exposure of PII on Afghan interpreters who worked with the UK may put hundreds at risk of Taliban reprisals
-
September 21, 2021
21
Sep'21
Spanish police bust Mafia-linked phishing gang
A joint operation between European authorities has dismantled a cyber criminal gang with links to the Italian Mafia
-
September 16, 2021
16
Sep'21
Dutch education administrators underestimate threat of cyber crime
Research shows educational establishments in the Netherlands are becoming favoured targets of cyber criminals and administrators are underestimating the risks
-
September 16, 2021
16
Sep'21
Bitdefender launches free REvil ransomware decryptor
Working alongside law enforcement partners, Bitdefender has developed and released a tool to help REvil victims recover their data for free
-
September 16, 2021
16
Sep'21
Travel-themed phishing lures spiked this summer
As people begin to take holidays again after more than a year of restrictions and lockdowns, opportunist cyber criminals have taken note, according to new data from Palo Alto’s Unit 42
-
September 15, 2021
15
Sep'21
Microsoft patches 66 vulnerabilities in September update
Another lighter-than-usual Patch Tuesday update includes important fixes for recently disclosed vulnerabilities, including a dangerous zero-day, and an update in the PrintNightmare saga
-
September 14, 2021
14
Sep'21
Mass health tracker data breach has UK impact
The leak of a database of 61 million users of health-tracking devices includes records on individuals located in the UK
-
September 14, 2021
14
Sep'21
Cost of ransomware attack in financial sector exceeds $2m
Mid-sized financial services organisations worldwide spend an average of over $2m recovering from ransomware attacks
-
September 14, 2021
14
Sep'21
Apple patches ForcedEntry vulnerability used by spyware firm NSO
Apple patches ForcedEntry vulnerability that was used to target political activists with spyware
-
September 13, 2021
13
Sep'21
Smishing attacks up sevenfold in six months
Scam text messages are reaching pandemic proportions, thanks in part to the pandemic
-
September 09, 2021
09
Sep'21
UK GDPR faces changes under planned reforms
DCMS is launching a major consultation on proposed changes to the UK’s data protection regime, under which several key elements of the GDPR are likely to change
-
September 08, 2021
08
Sep'21
REvil reappearance may herald new ransom campaigns
The re-emergence of the infamous REvil ransomware gang is a likely sign that more high-profile attacks will unfold over the coming weeks
-
September 08, 2021
08
Sep'21
Covid positive for security market, but still a source of stress
CIISec’s latest “State of the profession report” highlights both positives and challenges for cyber pros arising from the past two years
-
September 08, 2021
08
Sep'21
Stolen credit card data worth about £13 on dark web, PayPal worth more
The average price of a stolen credit card on a dark web marketplace comes in at around $17.40, or £12.60, according to new data – but the real money for cyber criminals is in hacked PayPal accounts
-
September 07, 2021
07
Sep'21
OT security in APAC remains work in progress
Two operational technology security experts shed light on the state of OT security in the region, and what’s being done to address skills, competency and organisational challenges
-
September 07, 2021
07
Sep'21
ICO in bid to end cookie pop-ups
Outgoing information commissioner Elizabeth Denham will call on her equivalents across the G7 group of countries to collaborate on an overhaul of cookie consent pop-ups
-
September 03, 2021
03
Sep'21
Berlin court reverses ban on use of EncroChat evidence in criminal trials
Berlin Superior Court allows use of EncroChat evidence in criminal trials but lawyers say the question will ultimately need to be decided by the German Supreme Court
-
September 03, 2021
03
Sep'21
Mandiant, Sophos detail dangerous ProxyShell attacks
Threat researchers and incident responders continue to track threat activity around the dangerous ProxyShell Microsoft Exchange vulnerabilities, including impactful ransomware hits
-
September 02, 2021
02
Sep'21
WhatsApp fined €225m over GDPR breaches
Irish data protection watchdog has issued one of the largest GDPR fines to date against Facebook-owned WhatsApp
-
September 02, 2021
02
Sep'21
Twitter tests auto-block feature for accounts at risk of abuse
Latest Twitter feature automatically blocks abusive users, and is intended to help victims regain control of their experience on the platform
-
September 01, 2021
01
Sep'21
Experts warn on Office 365 phishing attacks
Newly observed campaign is particularly dangerous because it appears to neutralise one of the most widely known anti-phishing techniques
-
September 01, 2021
01
Sep'21
Remote workers routinely bypassed security tools during pandemic
New data from Palo Alto Networks reveals that over 25% of UK security leaders saw their employees circumventing or switching off security measures at the height of the pandemic
-
August 27, 2021
27
Aug'21
Are proposed data protection changes a threat to UK citizens’ privacy?
Though changes are as-yet undefined pending an upcoming consultation, concerns are already being expressed over the government’s plan to liberalise data protection laws in the service of innovation and growth
-
August 26, 2021
26
Aug'21
Tech giants commit to Biden's cyber security action plan
Some of the world’s most prominent tech giants have made a series of commitments to enhance the US’ national cyber security posture following a high-profile meeting with president Biden
-
August 26, 2021
26
Aug'21
NZ privacy lead John Edwards named new information commissioner
DCMS has named John Edwards, currently New Zealand privacy commissioner, to succeed Elizabeth Denham as UK information commissioner
-
August 25, 2021
25
Aug'21
Calling the cops for ransomware attacks doesn’t help, say cyber pros
A new study for the #Ransomaware campaign reveals some insight into why so few victims report ransomware attacks
-
August 25, 2021
25
Aug'21
UK loses £1.3bn to fraud and cyber crime so far this year
New figures from the National Fraud Intelligence Bureau show a threefold spike in reported financial losses to fraud and cyber crime in the first six months of 2021
-
August 24, 2021
24
Aug'21
Half of MS Exchange servers at risk in ProxyShell debacle
Up to 50% of MS Exchange users in the UK are exposed to three vulnerabilities that are now being actively exploited
-
August 24, 2021
24
Aug'21
More data breaches in Australia arising from ransomware
The number of data breaches in Australia arising out of ransomware attacks grew by 24% during the first half of 2021, according to OAIC’s latest data breach report
-
August 19, 2021
19
Aug'21
Pub apps harvesting swathes of customer data unnecessarily
Some pub and restaurant chain apps demand data such as gender and marital status, raising eyebrows among privacy campaigners
-
August 19, 2021
19
Aug'21
IT leaders fear ‘trickle-down’ of nation-state cyber attacks
Three-quarters of IT decision-makers are concerned that the tactics, techniques and procedures used by nation-state attackers could be used against them
-
August 13, 2021
13
Aug'21
Cyber Runway programme supports new security businesses
The Cyber Runway programme is a government-backed scheme to support entrepreneurs, startups and scaleups in launching and growing new security businesses
-
August 13, 2021
13
Aug'21
Hospitals see cyber security investment as a low priority
Almost half of hospitals have experienced an IT shutdown as a result of a cyber attack in the past six months, but just over one in 10 hospital executives see cyber security investment as a high priority
-
August 12, 2021
12
Aug'21
ICO consults on new international data transfer agreement
Information Commissioner’s Office to consult on its draft international data transfer agreement and guidance, which will replace standard contractual clauses to protect personal data during overseas transfers
-
August 11, 2021
11
Aug'21
The Netherlands still lacks digital resilience, says report
Report by National Coordinator for Counterterrorism and Security says the Netherlands’ digital resilience has improved, but is still insufficient
-
August 10, 2021
10
Aug'21
Third of finance firms accelerate use of artificial intelligence to detect money laundering
Financial services firms are stepping up their use of artificial intelligence and machine learning technology to fight increasing money laundering activity
-
August 06, 2021
06
Aug'21
Apple unveils plans to scan US iPhones for child sex abuse images
Apple will introduce child sexual abuse material detection for US users later this year, but some experts are worried that the technology could be repurposed to scan phones for other kinds of content