News

Cloud security

• June 10, 2020 10 Jun'20

  Unsecured Elasticsearch server breached in eight hours flat

  Comparitech’s Bob Diachenko wanted to find out how long it would take for hackers to find and attack an unsecured, public internet-facing database, so he set up a honeypot

• June 09, 2020 09 Jun'20

  Bankers say artificial intelligence will separate winners and losers

  The application of artificial intelligence at banks will be the difference between the ones that succeed and the ones that fail in the coming years

• June 09, 2020 09 Jun'20

  Poorly-secured AWS buckets used to launch Magecart attacks

  Cyber criminals are exploiting misconfigured AWS S3 buckets to run credit card fraud and malvertising campaigns, according to new data

• June 04, 2020 04 Jun'20

  Small businesses failing on remote worker protection

  Only one-third of people working for small businesses have received any guidance from their employers on how to secure their remote working set-up

• June 02, 2020 02 Jun'20

  VMware vulnerability leaves private clouds open to takeover

  Ethical hackers from Citadelo uncovered a vulnerability in VMware Cloud Director that left private cloud owners open to takeover

• May 29, 2020 29 May'20

  How Sega Europe slashed incident response times using cloud SIEM

  Gaming company’s SOC radically improves its operational efficiency with Sumo Logic’s cloud SIEM service

• May 28, 2020 28 May'20

  Public Health England to keep contact-tracing data for 20 years

  PHE will retain the data it collects via the NHS Test and Trace programme for 20 years

• May 27, 2020 27 May'20

  Enterprise clouds hammered by cyber attacks during pandemic

  Remote workers logging onto enterprise cloud service accounts are an easy access point for attackers, says McAfee

• May 20, 2020 20 May'20

  Personal devices putting Singapore employers at risk

  More than half of Singapore respondents to a CrowdStrike-commissioned survey believe their devices are only somewhat secure against advanced cyber threats

• May 20, 2020 20 May'20

  Responsible Cyber acquires Secucial in S$7m deal

  Singapore startup Responsible Cyber plans to bolster its Immune platform with access control management capabilities, and sets out to expand its global footprint

• May 19, 2020 19 May'20

  Cancelled NCSC CyberUK event gets green light for 2021

  The NCSC’s popular CyberUK event has been rescheduled to next year, and will again take place in Newport in south Wales

• May 19, 2020 19 May'20

  GitLab makes foray into Southeast Asia

  GitLab expands in Southeast Asia with a Singapore presence to shore up its growing footprint across the Asia-Pacific region

• May 14, 2020 14 May'20

  Venafi buys cloud protection service Jetstack

  Jetstack specialises in open source machine identity protection software for Kubernetes and cloud native ecosystems

• May 13, 2020 13 May'20

  Report reveals inadequate cyber security at Schiphol Airport

  A report has revealed problems with critical security systems in Amsterdam’s Schiphol Airport

• May 05, 2020 05 May'20

  GoDaddy owns up to October 2019 data breach

  Web hosting services provider has suffered yet another security incident, confirming that an unauthorised individual accessed hosting accounts

• May 04, 2020 04 May'20

  Xen Orchestra latest victim of Salt cryptojackers

  More victims of cyber criminals exploiting two critical Salt vulnerabilities are coming forward

• May 04, 2020 04 May'20

  Blogging platform Ghost hacked through Salt vulnerability

  Publishing service’s network was taken over by illicit cryptominers after failing to patch a critical vulnerability

• May 04, 2020 04 May'20

  IT Priorities 2020: Compliance and risk are top security concerns

  When it comes to security, buyers are prioritising solutions and services that address compliance issues, risk management and data protection, according to the Computer Weekly/TechTarget IT Priorities 2020 study

• April 30, 2020 30 Apr'20

  Critical SaltStack vulnerability affects thousands of datacentres

  Critical vulnerabilities in the Salt remote task and configuration framework enable hackers to take control of cloud servers and must be patched right away

• April 20, 2020 20 Apr'20

  Dutch organisations address business email compromise fraud

  Public-private partnership in the Netherlands works to break the chains used by fraudsters to carry out BEC attacks

• April 20, 2020 20 Apr'20

  Australian workers are weakest link in fight against cyber attacks

  About four in 10 employees are sharing inappropriate data across mobile devices and half of all security incidents in 2019 occurred through inappropriate IT use, new study finds

• April 16, 2020 16 Apr'20

  NHS Wales to get free security services during coronavirus pandemic

  NHS Wales Informatics Services enlists Thales to help it face down security threats and let its teams focus on the Covid-19 coronavirus crisis

• April 16, 2020 16 Apr'20

  Coronavirus: Cyber attacks on banks seen spiking, says Carbon Black

  VMware’s Carbon Black observes a spike in cyber attacks on financial services organisations

• April 15, 2020 15 Apr'20

  Microsoft patches 19 critical bugs in another heavy Patch Tuesday

  The volume of vulnerabilities being uncovered by Microsoft remains high, with more than 100 fixes pushed out in April’s Patch Tuesday

• April 07, 2020 07 Apr'20

  Happy developers write secure code, report claims

  DevOps specialist Sonatype claims to have found a direct correlation between satisfied developers and application security hygiene

• March 27, 2020 27 Mar'20

  Lorca calls on security scaleups to tackle coronavirus challenge

  Lorca innovation programme has launched an open call for its next cohort of cyber security scaleups, with a timely focus on coronavirus challenges

• March 26, 2020 26 Mar'20

  Coronavirus: What are the latest free cyber security offers?

  We round up the latest free offers on cyber security products and services being made available during the Covid-19 coronavirus crisis

• March 23, 2020 23 Mar'20

  Interview: Jamil Farshchi, CISO, Equifax

  Equifax CISO Jamil Farshchi discusses public cloud and why it’s not something IT security professionals should be afraid of

• March 13, 2020 13 Mar'20

  Coronavirus-linked hacks likely as Czech hospital comes under attack

  The world of cyber security is on high alert to heightened vulnerabilities as the spread of the Covid-19 coronavirus changes daily life across Europe

• March 12, 2020 12 Mar'20

  APAC remains hotbed for digital transformation

  Nearly half of organisations in the Asia-Pacific region see digital transformation as their top priority, followed by cloud infrastructure deployment and artificial intelligence, survey finds

• March 10, 2020 10 Mar'20

  VAT software supplier exposed data of millions

  Eight million sales records belonging to UK and EU consumers left exposed due to misconfigured server

• March 10, 2020 10 Mar'20

  Inside Oracle’s cloud strategy

  Oracle may be late to the cloud infrastructure and platform game, but it believes it has what it takes to carve out a bigger slice of the Asia-Pacific’s cloud market

• March 06, 2020 06 Mar'20

  Virgin Media confirms 'misconfigured database' left personal data of 900,000 people exposed

  Telco provider Virgin Media confirms 'data incident' that left personal details of 900,000 people exposed, but denies its systems were hacked or that it suffered a data breach

• March 04, 2020 04 Mar'20

  Australian government pulls plug on cloud certification programme

  The Australian Signals Directorate is closing its cloud services certification programme to allow for more home-grown suppliers

• March 02, 2020 02 Mar'20

  The Security Interviews: Inside the world of bug bounties

  You may not make a million as a bug bounty hunter, but you might help remove some of the stigma that persists around cyber security, says HackerOne’s Shlomie Liberow

• February 28, 2020 28 Feb'20

  NCSC makes ransomware attack guidance more accessible

  Following a swathe of high-profile ransomware attacks, the UK’s National Cyber Security Centre has made changes to its guidance, emphasising the importance of offline backups

• February 27, 2020 27 Feb'20

  Oxbotica on board with Cisco to drive autonomous vehicle data challenge

  Connected car technology firm hits pedal with Cisco to solve data challenges of future autonomous vehicles

• February 27, 2020 27 Feb'20

  IT Priorities 2020: ASEAN firms on the frontline of digital transformation

  Southeast Asian companies plan to spend more on infrastructure and cyber security, but the growth in IT budgets appears to be slowing down

• February 26, 2020 26 Feb'20

  Cloud Snooper firewall bypass may be work of nation state

  Cloud Snooper deploys a combination of specialised techniques to sneak past enterprise firewalls, warns Sophos

• February 26, 2020 26 Feb'20

  How tech suppliers are easing barriers to hybrid cloud adoption

  The tech industry has risen to the challenge of helping enterprises ease their transition to hybrid cloud, but issues remain

• February 25, 2020 25 Feb'20

  Sports retailer Decathlon left employee data exposed

  More than 123 million records were accidentally exposed on an unsecured ElasticSearch server

• February 25, 2020 25 Feb'20

  The Security Interviews: Gil Shwed’s 10-year vision for security

  Check Point founder Gil Shwed discusses his new Infinity Next concept and how he plans to remodel the world of cyber security in the next 10 years

• February 25, 2020 25 Feb'20

  Cloud data leaks compounded by lack of automation tools

  Data leaks caused by misconfigured clouds are being compounded because security teams lack appropriate automation and integration tools, according to a report

• February 24, 2020 24 Feb'20

  McAfee buys Light Point to enhance web browser protection

  Acquisition of Light Point Security will extend the capabilities of multiple McAfee products

• February 24, 2020 24 Feb'20

  Cisco goes all-in on security integration with SecureX platform

  CISOs are struggling to stitch together disparate cyber security products and services – Cisco believes its cloud-native SecureX platform will change their working lives for the better

• February 19, 2020 19 Feb'20

  Cost of cloud misconfigurations set at $5tn

  Cloud security outfit DivvyCloud says more than 33 billion records have been exposed in cloud misconfiguration incidents in the past 24 months

• February 17, 2020 17 Feb'20

  Ex-soldiers to become ethical hackers

  A new programme will give armed forces veterans in Scotland a grounding in cyber security skills, including penetration testing and ethical hacking

• February 11, 2020 11 Feb'20

  Tencent Cloud gains multi-tier cloud security certification

  China's Tencent Cloud joins major cloud suppliers in securing tier three of Singapore’s Multi-Tier Cloud Security standard in a bid to grow its presence in Asia

• February 06, 2020 06 Feb'20

  Stressed, overworked CISOs losing £23k a year in unpaid overtime

  Nominet’s latest CISO Stress Report has revealed the extent to which organisations are taking advantage of their security staff, and the deleterious effects of overwork and stress on mental health

• February 05, 2020 05 Feb'20

  Darktrace signs to McLaren for 2020 F1 season

  McLaren Racing has enlisted Darktrace to become its official artificial intelligence cyber security partner