News
Security policy and user awareness
-
October 22, 2020
22
Oct'20
Protecting remote workers an opportunity to do security better
Securing the fully remote workforce has been a challenge for IT teams, but it presents an opportunity to commit to a higher standard of cyber security, according to a Cisco report
-
October 21, 2020
21
Oct'20
NSA’s top CVE list a timely reminder to patch
Many of the CVEs detailed on the NSA’s top 25 chart are golden oldies
-
October 21, 2020
21
Oct'20
Charities warned over ‘Robin Hood’ cyber criminals
Accepting donations from cyber criminal groups could be deemed as profiting from crime, money laundering or handling stolen goods – so don’t do it
-
October 21, 2020
21
Oct'20
Customer loyalty accounts in danger from cyber criminals
Billions of credential stuffing attacks are harvesting valuable customer data for the dark web economy
-
October 21, 2020
21
Oct'20
Retailers get access to new security toolkit
The British Retail Consortium has worked with the NCSC to develop a new cyber security toolkit pitched at retailers
-
October 20, 2020
20
Oct'20
Resilient Trickbot down but not yet knocked out
Global, Microsoft-led effort to disrupt the Trickbot botnet has seen some success, but new command and control servers continue to pop up
-
October 20, 2020
20
Oct'20
Police given access to self-isolation data
NHS Test and Trace self-isolation data will be made available to police after new guidance changes data-sharing rules
-
October 20, 2020
20
Oct'20
BA breach penalty sets new GDPR precedents
The 90% reduction in the fine levied on BA over a 2018 data breach has legal experts talking about the ramifications for the future of data protection
-
October 15, 2020
15
Oct'20
Cloud data protection keeps the Crick’s medical research Covid-secure
Cloud data management services from Rubrik gave the Francis Crick Institute a data protection edge and have helped keep its vital work going through the pandemic
-
October 15, 2020
15
Oct'20
Hackney services still offline in ongoing cyber attack
Services remain disrupted two days after council was hit by a serious incident, as residents are warned to be on their guard
-
October 14, 2020
14
Oct'20
Public sector security failings leave UK at risk, says think tank
Reform report urges adoption of new policies in the next version of the UK’s National Cyber Security Strategy
-
October 14, 2020
14
Oct'20
US Elections: Malicious internet domains spike as campaigns heat up
Internet domains related to the US presidential election are 56% more likely to be malicious than regular ones
-
October 14, 2020
14
Oct'20
Fintech ‘unicorn’ Klarna probed over data misuse
Online bank blames misuse of user data on human error as Information Commissioner’s Office weighs in
-
October 14, 2020
14
Oct'20
Microsoft fixes 87 bugs in October 2020 Patch Tuesday
Smaller October Patch Tuesday update includes fixes for critical bugs in Windows 10 and Windows Server 2019
-
October 13, 2020
13
Oct'20
Suppliers neglecting virtual appliance security, putting users at risk
Software suppliers are often distributing their products on virtual appliances that contain known vulnerabilities or are running outdated or unsupported operating systems, according to a report
-
October 12, 2020
12
Oct'20
Five Eyes spy group again demands access to private messages
Spooks are once again calling for the tech industry to break end-to-end encryption in messaging platforms
-
October 12, 2020
12
Oct'20
Cyber security skills ad branded ‘crass’ by minister
Security skills campaign advert depicting a ballet dancer comes in for criticism as the arts sector struggles in the pandemic
-
October 12, 2020
12
Oct'20
Making sense of zero-trust security
Implementing zero-trust security is not an easy feat, but enterprises can still get it right if they approach it from a process perspective and get a handle on their infrastructure footprint
-
October 08, 2020
08
Oct'20
NCSC relaunches SME security guide with home working focus
The NCSC is issuing an updated version of its guide to security for SMEs, reflecting the long-lasting changes to the world of work seen in 2020
-
October 08, 2020
08
Oct'20
Emotet rated September’s ‘most popular’ malware
The current resurgence of Emotet is attracting attention as governments issue new warnings and cyber criminals rush to exploit the chaotic US election
-
October 08, 2020
08
Oct'20
Crown Prosecution Service suffers 1,600 data breaches in 12 months
CPS sees a spike in data security incidents, many of them serious enough to be reported to the Information Commissioner’s Office
-
October 08, 2020
08
Oct'20
Threat of GDPR fines increasingly driving security buying decisions
Scaring the people who hold the purse strings may be the best option for CISOs who need a little extra budget
-
October 07, 2020
07
Oct'20
Southeast Asia remains hotspot for cyber attacks
Geopolitics and Covid-19 have been fodder for cyber criminals to advance their motives in Southeast Asia in 2020
-
October 06, 2020
06
Oct'20
EU’s top court questions legality of UK phone and internet data surveillance
European Court of Justice rules that the UK and EU member states must comply with EU privacy laws when harvesting people’s sensitive communications data from telecoms and internet companies
-
October 06, 2020
06
Oct'20
Ransomware attacks go through the roof
The volume of ransomware attacks has jumped 50% in the past three months, according to data produced at Check Point
-
October 05, 2020
05
Oct'20
MosaicRegressor APT campaign using rare malware variant
Kaspersky researchers have shared details of a APT campaign utilising a rarely seen and hard-to-stop variety of malware
-
October 05, 2020
05
Oct'20
Fake news tops list of online concerns worldwide
Receiving false information is a greater worry than other online risks such as cyber bullying and fraud, says the Lloyd’s Register Foundation
-
October 05, 2020
05
Oct'20
HMRC warns locked-down freshers of ‘wave’ of tax scams
New university intake may be being targeted by cyber criminals amid Covid-19 confusion
-
October 02, 2020
02
Oct'20
Honesty is the best policy: Forging a security culture in the NHS
Clinician and technologist Sam Shah helped set up NHSX in 2019. Now he’s helping advance digital transformation in healthcare from the outside, and a big part of that is addressing security in the sector
-
October 02, 2020
02
Oct'20
Security pros face sanctions if they help ransomware victims pay
New advisory from the US government warns cyber insurance and incident response specialists that they could be skating on thin ice if they help ransomware victims pay their attackers off
-
October 02, 2020
02
Oct'20
Find and fix your Adobe Flash dependencies, says NCSC
As Adobe’s Flash Player approaches end-of-life, the National Cyber Security Centre is urging organisations to fix their Flash dependencies
-
September 29, 2020
29
Sep'20
Threat actors becoming vastly more sophisticated
Malicious actors have been busily honing their craft and cyber security incidents are up across the board as a result, according to a Microsoft report
-
September 29, 2020
29
Sep'20
NCSC expands schools programme to north-east England and Northern Ireland
Following an initial roll-out in Gloucestershire and Wales, the NCSC’s CyberFirst Schools programme is being extended to north-east England and Northern Ireland
-
September 29, 2020
29
Sep'20
NatWest offers online banking customers free security services
Bank responds to a surge in cyber crime targeting users of online banking services
-
September 29, 2020
29
Sep'20
Ryuk attack downs private health provider in major incident
Private healthcare provider UHS has been been hit by a major big game hunting cyber attack that infected its systems with the Ryuk ransomware
-
September 28, 2020
28
Sep'20
TikTok ban stayed after last-minute court case
TikTok’s lawyers have staved off an imminent ban for the time being, after successfully arguing that it infringed rights guaranteed under the Constitution of the United States
-
September 28, 2020
28
Sep'20
Police Scotland to set up new cyber crime centre
National Centre of Excellence will employ specially trained officers to tackle a vertiginous rise in cyber crime
-
September 28, 2020
28
Sep'20
Security now main driving force behind digital transformation
Organisations are urgently remodelling their core technology stack in the light of the Covid-19 pandemic, and this is pushing security to the top of the agenda
-
September 28, 2020
28
Sep'20
Airbnb hosts’ account data exposed in internal leak
Data exposure within Airbnb’s system was the result of a technical issue but was swiftly fixed, says the firm
-
September 24, 2020
24
Sep'20
Third-party code bug left Instagram users at risk of account takeover
A critical vulnerability in Instagram’s image processing could have allowed attackers to take over not just their victim’s account, but their entire device
-
September 24, 2020
24
Sep'20
NHS whistleblower privacy concerns passed on to regulator, but campaigners not holding their breath
NHS Improvement chair Dido Harding acknowledges receiving concerns raised about the anonymity of whistleblowers, but campaigners have little faith that anything will be done
-
September 24, 2020
24
Sep'20
Government blasted over ‘reckless’ contact-tracing security
The Open Rights Group and Big Brother Watch accuse the government of endangering public health with a reckless attitude to contact-tracing data security
-
September 23, 2020
23
Sep'20
Public admires security professionals, but doesn’t want their jobs
(ISC)² research finds attitudes towards security roles are increasingly positive, but not many people fancy joining the fight against cyber crime
-
September 23, 2020
23
Sep'20
Video gamers barraged with cyber attacks
From credential stuffing to SQL injection and DDoS, video game producers and players are seeing massive volumes of cyber attacks
-
September 23, 2020
23
Sep'20
US agencies warn of election disinformation and cyber attacks
Federal agencies are warning of heightened disinformation as the crucial 2020 presidential election nears
-
September 22, 2020
22
Sep'20
Activision shoots down data breach claims
Gaming company denies there has been any data breach after up to 500,000 accounts appeared to have been compromised, but evidence mounts that credential stuffing attacks are to blame
-
September 22, 2020
22
Sep'20
Scam mobile apps spreading via rogue TikTok accounts
Malicious TikTok accounts are promoting a number of adware scam mobile apps
-
September 21, 2020
21
Sep'20
Trump implicated in plans to prosecute Assange over war leaks
US journalist and Trump supporter, Cassandra Fairbanks, said she was given advanced details of US plans to oust Wikileaks founder Julian Assange from the Ecuadorian Embassy and to arrest him for over documents leaked by former soldier Chelsea Manning
-
September 18, 2020
18
Sep'20
German authorities probe ransomware hospital death
Hackers failed to extort a ransom from University Hospital Düsseldorf, but indirectly caused the death of a patient
-
September 18, 2020
18
Sep'20
Rampant Kitten spent six years hacking Iranian dissidents
Details emerge of an ongoing campaign by Tehran-backed threat actors targeting dissidents and activists