News

Application security and coding requirements

• September 09, 2015 09 Sep'15

  Security vulnerability management more than patching, warns Secunia

  Keeping track of what makes an IT environment vulnerable is an ongoing and complex task, according to Secunia

• July 31, 2015 31 Jul'15

  Commercial software more secure than open source, finds report

  A study has found that commercial code is more compliant than open source code with security compliance standards, such as the Owasp top 10 and the CWE top 25

• June 26, 2015 26 Jun'15

  Computer Weekly European User Awards 2015 winners revealed

  The winners have been announced for the Computer Weekly European User Awards 2015. See who made the top spots

• June 24, 2015 24 Jun'15

  IT professionals give Windows 10 Start button the thumbs up

  A survey of European and North American IT professionals has found that the return of the Start button is the most enticing feature in Microsoft's latest operating system

• June 23, 2015 23 Jun'15

  Pharmaceutical companies use BPM to cut cost of clinical trial drugs

  Pharmaceutical companies have developed an IT system to secure the supply of medicines they need for clinical studies, saving hundreds of thousands on their drugs bill in the process

• May 26, 2015 26 May'15

  NATS failure down to bug from the 90s and redundant code

  A bug present in Nats since 1990s has been identified as the root cause of the five-hour outage of UK air traffic control on 12 December 2014

• May 18, 2015 18 May'15

  Whitehall technology chiefs vetoed new Windows XP support deal

  Government technology chiefs vetoed a new deal with Microsoft to continue Windows XP support to force laggards to move off the OS

• April 30, 2015 30 Apr'15

  IoT benefits and privacy not mutually exclusive, says industry expert

  It is possible to mitigate the privacy and security risks of the internet of things (IoT) without losing its benefits, according to an industry expert

• February 27, 2015 27 Feb'15

  Case study: Norwegian insurer invests in Darktrace machine-learning cyber defence

  Shipping insurance company DNK hopes to inspire the rest of the shipping industry to adopt Darktrace’s cyber defence system

• February 24, 2015 24 Feb'15

  PrivDog SSL compromise potentially worse than Superfish

  Some versions of PrivDog software designed to block online ads compromise internet security in a similar way to Superfish

• January 06, 2015 06 Jan'15

  Google under fire over Windows zero-day disclosure

  Google has come under fire for publishing a proof-of-concept attack exploiting a flaw in Windows 8.1 before Microsoft had released a security update

• December 17, 2014 17 Dec'14

  Cabinet Office begins procurement for next stage of Gov.uk Verify

  The Cabinet Office has submitted a tender notice for a £150m three-year framework for the provision of identity assurance services

• December 17, 2014 17 Dec'14

  US interception in the EU faces new legal challenges

  US government orders against Microsoft to hand over email data 'infringes privacy legislation' in other countries

• November 28, 2014 28 Nov'14

  CGI secures communications between pilots and air traffic control

  Satellite communications firm Inmarsat has outsourced the provision of security IT and services to CGI

• October 09, 2014 09 Oct'14

  WordPress most attacked application

  Websites that run the WordPress content management system are attacked 24% more often than those using other systems

• October 08, 2014 08 Oct'14

  Malware being used to steal cash from ATMs

  Criminals are using malware to steal cash from ATMs without debit and credit cards

• September 17, 2014 17 Sep'14

  KPMG: IoT, 3D printing and healthcare IT to have most impact

  Internet of things (IoT), 3D printing and biotech or healthcare IT are among the IT trends that will change the way people work and live

• September 15, 2014 15 Sep'14

  Salesforce issues advice on avoiding Dyreza attack

  Salesforce has issued a set of guidelines on tightening security after a number of its customers were targeted by the Dyreza email virus

• August 27, 2014 27 Aug'14

  Security experts identify top 10 software design flaws

  The IEEE Center for Secure Design has published a report on how to avoid the top 10 software security design flaws

• August 11, 2014 11 Aug'14

  USB-connected devices present cyber vulnerabilities

  Connecting devices to computers using a USB port could lead to security breaches, say Berlin-based researchers

• July 04, 2014 04 Jul'14

  Barclays passes government’s ‘internet-born threat’ test

  Barclays Bank has been awarded the government’s cyber security certificate for digital banking services after independent tests of services such as Pingit

• July 03, 2014 03 Jul'14

  Netflix releases its AWS monitoring tool Security Monkey into the wild

  Netflix has made Security Monkey, the AWS tracker tool it built for itself, freely available to other Amazon cloud users

• April 25, 2014 25 Apr'14

  Heartbleed prompts tech firms to pledge open-source support

  Top tech firms have joined forces to support open-source software to help prevent future bugs like Heartbleed

• April 17, 2014 17 Apr'14

  Datacentre lessons learnt from Heartbleed bug

  The Heartbleed bug, an OpenSSL flaw affecting millions of websites, has some lessons for datacentre providers and operators

• February 21, 2014 21 Feb'14

  Employee mobiles expose firms to attack, says Webroot

  Employees mobile devices expose companies to malicious applications and attacks, according to the latest mobile threat report from Webroot

• February 05, 2014 05 Feb'14

  Bank of England publishes Waking Shark II cyber security exercise results

  Bank of England publishes the results of its Waking Shark II security exercise, which tested financial institutions' contingency plans for cyber attack

• January 23, 2014 23 Jan'14

  US startup aims to turn tables on hackers

  US startup Shape Security is turning the tables against hackers by using one of their own techniques against them

• January 10, 2014 10 Jan'14

  More than 1,100 DWP workers disciplined over benefits snooping

  More than 1,100 employees at the Department for Work and Pensions have received official warnings since 2008 for prying into benefits records

• December 05, 2013 05 Dec'13

  UK citizen sues Microsoft over Prism private data leak to NSA

  A court action brought in the UK will test Microsoft's legal right to disclose private data on UK citizens to US intelligence services

• October 30, 2013 30 Oct'13

  Identity assurance system moves into beta test phase

  The Government Digital Service has started testing of a key system to support plans for citizens to securely prove their identity when accessing online public services

• August 23, 2013 23 Aug'13

  Box.com forges new cloud security model

  Service providers and consumers need to move to a security model better suited to the cloud computing, says Box.com

• July 19, 2013 19 Jul'13

  Facebook to acquire UK startup Monoidics

  Facebook is to acquire UK startup Monoidics, which makes code verification and analysis tools and specialises in detecting coding errors

• July 15, 2013 15 Jul'13

  Black market for software security flaws reaches new highs

  The black market in previously undiscovered vulnerabilities in commercial software is so established that the average flaw sells for up to $160,000

• June 10, 2013 10 Jun'13

  Telefonica Digital forms security group Eleven Paths

  The business division of mobile operator Telefonica launches Eleven Paths, an independent company working on security issues in the workplace

• May 15, 2013 15 May'13

  Microsoft declares conformance with ISO 27034-1

  Microsoft has declared conformance with ISO 27034-1, the first part of an international standard for secure software development

• May 13, 2013 13 May'13

  Cyber criminals hack Washington court system

  Hackers gain access to the personal data of 160,000 US citizens after compromising Washington State court service servers

• April 22, 2013 22 Apr'13

  US jails LulzSec hacker Cody Kretsinger

  The US has jailed a member of hacktivist group LulzSec for a year for his role in breaching computer systems at Sony Pictures Entertainment in 2011

• April 19, 2013 19 Apr'13

  Conficker makes way for web-based attacks, says Microsoft

  Web attacks emerge as top threat as businesses finally begin to win the battle against Conficker and other worms, says Microsoft

• April 11, 2013 11 Apr'13

  Bots and web apps among top threats to data security, says Check Point

  Bots, viruses, breaches and attacks are a constant and real threat to the information security of organisations

• March 25, 2013 25 Mar'13

  Malware in counterfeit software to cost business $114bn in 2013

  Dealing with malware in counterfeit software will cost global enterprises an estimated $114bn in 2013, says research firm IDC

• February 28, 2013 28 Feb'13

  RSA 2013: Suppliers need to prepare for new security vulnerability handling standards

  Software makers and online service providers need to prepare for two ISO standards on vulnerability handling processes due by the end of 2013

• October 30, 2012 30 Oct'12

  IT security budgets mismatched to hacker targets, study shows

  IT security budgets are not being used to provide defence technologies in some areas most likely to be targeted by hackers, a study shows

• May 18, 2012 18 May'12

  MDM, security vendors scramble to address BYOD security issues

  Organisations are looking beyond NAC and MDM to resolve BYOD security issues; MDM, security and hybrid vendors are responding with new products.

• April 24, 2012 24 Apr'12

  Investigation reveals serious cloud computing data security flaws

  Context Information Security found that data stored by a cloud customer could be accessed by the next customer to spin up a VM on the same disk.

• February 24, 2012 24 Feb'12

  Windows security case study: Controlling Windows 7 user privileges

  After migrating from Windows XP to Windows 7, Oxford University Press used Avecto’s Privilege Guard to control Windows 7 user privileges.

• February 08, 2012 08 Feb'12

  Web application vulnerability statistics show security losing ground

  New Web application vulnerability statistics show the number of vulnerabilities is rising, despite the use of Web application development frameworks.

• February 03, 2012 03 Feb'12

  Microsoft spurs Browsium to rewrite tool for running IE6 on Windows 7

  Microsoft has spurred Browsium to rewrite its tool for running IE6 on Windows 7, limiting the security threat posed by continued use of IE6.

• December 05, 2011 05 Dec'11

  Concerned about tablet security issues? Some are, others not so much

  Users love their tablets, but security pros are concerned about tablet security issues. However, though tablets bring new threats, not everyone is ringing the alarm.

• August 04, 2011 04 Aug'11

  Missing USB drive, found in pub, contained unencrypted data

  The ICO says two housing groups must improve data security after a contractor’s missing USB drive, containing unencrypted data, was found in a pub.

• July 06, 2011 06 Jul'11

  Network security case study: College’s NAC virtual appliance makes grade

  Wellington College’s network security case study explains how a NAC virtualization appliance blocks malware and provides increased capacity on demand.