News

Cloud security

January 18, 2022 18 Jan'22
Exium, Teneo team to deliver digital experience, 5G-capable SASE platform

Work-from-anywhere IT services company and cyber security provider enter into partnership to assist lean enterprise IT teams in their transition to a secure access service edge
January 18, 2022 18 Jan'22
Cobalt Strike still C2 infrastructure of choice

Its utility and ease of use, coupled with explosive growth in ransomware actions, makes Cobalt Strike Team Servers the C2 infrastructure of choice for malicious actors
January 12, 2022 12 Jan'22
Macquarie joins NSW government’s cloud supplier panel

New South Wales state agencies will be able to access Macquarie’s sovereign cyber expertise and secure cloud, network and datacentre services
January 11, 2022 11 Jan'22
Almost half of Log4j downloads still dangerously exposed

Whether by error or design is unclear, but a great many IT teams are still exposing themselves by downloading outdated, insecure versions of Apache Log4j

January 11, 2022 11 Jan'22
Proofpoint acquires Singapore data security startup

Proofpoint’s acquisition of Dathena will bolster its data loss prevention capabilities, enabling organisations to better understand information risk through the use of AI
January 05, 2022 05 Jan'22
Google buys Siemplify in first phase of cyber investment

Once integrated into Google Cloud, Siemplify’s platform will serve as the basis for deeper security development at Google
January 03, 2022 03 Jan'22
How APAC firms can stay ahead of cyber threats

Organisations will need to develop behavioural detection, machine learning and threat hunting capabilities to keep pace with the onslaught of cyber attacks
December 23, 2021 23 Dec'21
Top 10 cyber security stories of 2021

Cyber security dominated the headlines in 2021, making it hard to gain a clear picture of what to pay attention to. What is an IT buyer to do?
December 21, 2021 21 Dec'21
IT Priorities 2022: Cloud-first mindset growing in India

Nearly half of organisations in India are expected to spend more on cloud services, underscoring the growing cloud-first mindset that is taking root in the subcontinent
December 20, 2021 20 Dec'21
Top 10 ransomware and backup stories of 2021

Key articles from 2021 that highlight the link between ransomware and snapshots and backup and their role in repelling attacks, plus effects of the pandemic on backup and recovery

December 15, 2021 15 Dec'21
After Log4j, December Patch Tuesday piles on the pressure

December’s Patch Tuesday update from Microsoft contains several critical CVEs, but this month all attention is focused on the fall-out from Log4Shell, and burn-out is becoming a real issue
December 14, 2021 14 Dec'21
Almost half of networks probed for Log4Shell weaknesses

Close to half of corporate networks have already been actively targeted by individuals seeking to exploit the critical Log4Shell Apache bug
December 13, 2021 13 Dec'21
What is Log4Shell, and why are we panicking about it?

It’s been described as a ‘design failure of catastrophic proportions’ that threatens the very fabric of the digital world. Find out what the Log4j2 Log4Shell panic is all about, and what you should do about it
December 13, 2021 13 Dec'21
Top IT predictions in APAC in 2022

Operationalising zero trust, talent retention and containerisation are just some of the key trends that will shape Asia-Pacific’s technology landscape in 2022
December 06, 2021 06 Dec'21
Surge in Nobelium-linked supply chain attacks

Mandiant’s researchers share new intel on two distinct clusters of Russian APT activity, linked to the Nobelium SolarWinds attackers
November 30, 2021 30 Nov'21
Recovering from ransomware: One organisation’s inside story

In February 2021, French office equipment supplier Manutan fell victim to a DoppelPaymer ransomware hit. IT ops director Jérôme Marchandiau tells the inside story of the incident
November 18, 2021 18 Nov'21
Memento ransomware gang quick to retool for ‘optimum’ outcome

The operators of a new ransomware called Memento are quick to retool for ‘success’ if they run up against a competent defender, says Sophos
November 17, 2021 17 Nov'21
Security startups line up on Cyber Runway

Some 108 cyber security startups representing the UK’s most cutting-edge innovators are to join Plexal’s Cyber Runway accelerator
November 04, 2021 04 Nov'21
The Netherlands works on resilience with large-scale national cyber exercise

For the Netherlands, the biggest challenge in a large-scale cyber crisis is to maintain speed while exercising due care
October 26, 2021 26 Oct'21
Lacework expands into ANZ, eyes APAC market

DevSecOps supplier Lacework’s expansion into Australia and New Zealand will pave the way for a broader move into the Asia-Pacific region
October 21, 2021 21 Oct'21
Airport operator MAG boosts threat visibility with hybrid SOC

With budget concerns weighing heavy during the pandemic, Manchester Airports Group ditched an impending capex-heavy cyber investment in favour of a hybrid managed/in-house approach. Learn more about its experience
October 21, 2021 21 Oct'21
APAC organisations warm to zero trust

Two-thirds of APAC organisations have a zero-trust strategy even as they grapple with the lack of skills and other organisational challenges, study finds
October 13, 2021 13 Oct'21
Google Cybersecurity Action Team springs into life

Google has announced a new Cybersecurity Action Team, with a mission to support security and digital transformation in governments, critical infrastructure, enterprises and small businesses
October 11, 2021 11 Oct'21
Singapore refreshes cyber security strategy

The city-state updates its national cyber security strategy to shore up the security of critical infrastructure and enterprises while growing its cyber security industry, among other goals
October 06, 2021 06 Oct'21
Israeli Orca to invest in UK cyber scene

Tel Aviv-headquartered Orca Security wants to set up a new R&D centre in the UK
October 04, 2021 04 Oct'21
Mandiant name returns to fore ahead of FireEye sale

Mandiant has completed its corporate rebrand pending the imminent sale of the FireEye products business to a private equity group
September 29, 2021 29 Sep'21
The Security Interviews: How SolarWinds came through its darkest hour

In his first major UK press interview, SolarWinds CEO Sudhakar Ramakrishna tells Computer Weekly how a relentless focus on transparency saw the company safely through a nightmare cyber breach scenario
September 28, 2021 28 Sep'21
How one red team exercise averted a new SolarWinds-style attack

Palo Alto Networks shares details of how its red teamers found and sealed a customer vulnerability that could have led to another SolarWinds-style supply chain attack
September 16, 2021 16 Sep'21
Dutch education administrators underestimate threat of cyber crime

Research shows educational establishments in the Netherlands are becoming favoured targets of cyber criminals and administrators are underestimating the risks
September 15, 2021 15 Sep'21
Australia and Singapore have higher incidences of insecure databases

Five-year longitudinal study by Imperva shows the proportion of databases with at least one known vulnerability in Australia and Singapore are among the world’s highest
September 01, 2021 01 Sep'21
Experts warn on Office 365 phishing attacks

Newly observed campaign is particularly dangerous because it appears to neutralise one of the most widely known anti-phishing techniques
September 01, 2021 01 Sep'21
Remote workers routinely bypassed security tools during pandemic

New data from Palo Alto Networks reveals that over 25% of UK security leaders saw their employees circumventing or switching off security measures at the height of the pandemic
August 26, 2021 26 Aug'21
Tech giants commit to Biden's cyber security action plan

Some of the world’s most prominent tech giants have made a series of commitments to enhance the US’ national cyber security posture following a high-profile meeting with president Biden
August 24, 2021 24 Aug'21
13 million malware attacks on Linux seen in wild

Cryptominers, web shells and ransomware are the most common varieties of malwares targeting Linux systems, thanks to its prevalence as the backbone of most public cloud services
August 18, 2021 18 Aug'21
MoD seeks security tech to harden military systems

The Defence and Security Accelerator has launched a programme to root out technology that will reduce the military’s exposure to cyber attacks
August 13, 2021 13 Aug'21
Cyber Runway programme supports new security businesses

The Cyber Runway programme is a government-backed scheme to support entrepreneurs, startups and scaleups in launching and growing new security businesses
August 11, 2021 11 Aug'21
The Netherlands still lacks digital resilience, says report

Report by National Coordinator for Counterterrorism and Security says the Netherlands’ digital resilience has improved, but is still insufficient
August 06, 2021 06 Aug'21
Apple unveils plans to scan US iPhones for child sex abuse images

Apple will introduce child sexual abuse material detection for US users later this year, but some experts are worried that the technology could be repurposed to scan phones for other kinds of content
August 05, 2021 05 Aug'21
Cloud misconfiguration a growing cause of security incidents

Rapid cloud adoption during the pandemic has increased the attack surface and heightened the risk of misconfiguring services, leaving organisations more vulnerable to cyber attacks
August 04, 2021 04 Aug'21
Six Isle of Wight schools hit by ransomware attack

Authorities are still working to manage the fallout from the attack, which has already forced at least one school to delay the start of the new term in September
August 04, 2021 04 Aug'21
Initial access brokers unaffected by ransomware content bans

Banning ransomware content from cyber crime forums has done little to prevent initial access brokers from advertising their services, with the number of access listings increasing in the second quarter of 2021
July 27, 2021 27 Jul'21
How IBM is solving the data privacy problem

IBM’s fully homomorphic encryption technology lets enterprises apply analytics and machine learning to encrypted data without compromising data privacy
July 25, 2021 25 Jul'21
OAIC: Uber failed to protect personal data of Australians

Uber did not take reasonable steps to protect Australians’ personal information from unauthorised access, says Australia’s national privacy watchdog
July 15, 2021 15 Jul'21
Privacy Shield: US surveillance law reforms essential for EU-US data, says EU parliamentary study

EU Committee on Civil Liberties, Justice and Home Affairs study calls for major reforms of US spying laws to enable an EU-US data-sharing agreement to replace Privacy Shield
July 14, 2021 14 Jul'21
Multiple Microsoft bugs being actively exploited

Microsoft’s July Patch Tuesday update fixes 117 vulnerabilities, 13 rated as critical and four already being actively exploited
July 13, 2021 13 Jul'21
Secureworks sets up in EU datacentre for XDR services

New datacentre location helps Secureworks’ customers meet EU data residency requirements
July 12, 2021 12 Jul'21
Kaseya VSA services coming online after week-long outage

Kaseya has successfully deployed a patch to its ransomware-hit VSA product as per a revised schedule, and customers are beginning to come back online
July 02, 2021 02 Jul'21
Cyber attackers up the ante on embattled IT teams

Opportunistic threat actors are pouncing on embattled IT teams that are under pressure to expand remote work arrangements
July 01, 2021 01 Jul'21
Nominations open for 2021 Security Serious Unsung Heroes Awards

Nominations are now open for this year’s edition of the Unsung Heroes Awards for cyber professionals and educators
June 30, 2021 30 Jun'21
Putting cloud repatriation into perspective

Moving public cloud workloads back on-premise is among the decisions that organisations have to make as they straddle between public and private cloud environments