News

Data breach incident management and recovery

• February 11, 2026 11 Feb'26

  The Security Interviews: Mick Baccio, Splunk

  Mick Baccio, global security advisor at Splunk SURGe and Cisco Foundation AI, reveals how the experience of running cyber on a dime for a US presidential campaign has informed how he does security, and why the basics still matter

• February 10, 2026 10 Feb'26

  Arctic Wolf targets mid-market security gap in APAC

  Following the launch of its full portfolio in Malaysia, the SOC provider discusses the security challenges facing lean IT teams, the value of supplier neutrality, and its roadmap for AI and ransomware protection

• February 10, 2026 10 Feb'26

  Researchers delve inside new SolarWinds RCE attack chain

  Researchers at Huntress and Microsoft have shared findings from their analysis of a new SolarWinds Web Help Desk vulnerability

• February 10, 2026 10 Feb'26

  Singapore mounts largest ever cyber operation to oust APT actor

  Operation Cyber Guardian mobilised over 100 defenders to neutralise UNC3886, which infiltrated Singtel, StarHub, M1 and Simba networks, operators issue joint pledge on defence-in-depth

• February 09, 2026 09 Feb'26

  Russia’s cyber attacks on Polish utilities draws NCSC alert

  A series of Russian cyber attacks targeting Poland’s energy infrastructure has prompted a warning from the UK’s National Cyber Security Centre

• February 04, 2026 04 Feb'26

  UK government must get its hands dirty on security, report says

  As the UK government develops its National Cyber Action Plan, a report from the Rusi think tank urges Westminster to take a more interventionist approach

• February 03, 2026 03 Feb'26

  Ransomware gangs focus on winning hearts and minds

  Ransomware-as-a-service operations are increasingly seeking to forge connections with employees, contractors and trusted partners of their target organisations as an alternative to straight-up hacking, says NCC

• January 29, 2026 29 Jan'26

  Security now one of the UK’s fastest-growing career paths

  The number of people working in the cyber security field has almost trebled in the 2020s, with one cyber professional for every 68 businesses in the UK

• January 27, 2026 27 Jan'26

  Wave of ShinyHunters vishing attacks spreading fast

  The ShinyHunters hacking collective that caused chaos in 2025 is ramping up a new voice phishing campaign, with several potential victims already identified

• January 27, 2026 27 Jan'26

  Broken decryptor leaves Sicarii ransomware victims adrift

  A coding error in an emergent strain of ransomware leaves victims unable to recover their data, even if they cooperate with the hackers’ demands

• January 23, 2026 23 Jan'26

  US punts renewal of threat data sharing law to September

  US lawmakers have extended the Cybersecurity Information Sharing Act of 2015 for another nine months, buying time to enact a replacement for the legislation.

• January 22, 2026 22 Jan'26

  Sportswear firm Under Armour falls victim to data breach

  Details of over 70 million customers of US sportswear giant Under Armour were leaked following a supposed ransomware attack by the Everest gang

• January 21, 2026 21 Jan'26

  UK and China reach out across cyber no-man's land

  London and Beijing have supposedly conducted high-level talks seeking to establish a joint security forum to help de-escalate potential cyber flashpoints, according to reports

• January 20, 2026 20 Jan'26

  UK public sector, CNI in Russian hacktivist crosshairs

  Hacktivists aligned to the Russian state are ramping up their targeting of UK organisations with denial of service attacks

• January 14, 2026 14 Jan'26

  Microsoft DCU uses UK courts to hunt down cyber criminals

  Microsoft has taken down the RedDVS cyber crime-as-a-service network after obtaining a UK court order, marking its first civil legal action outside of the US

• January 12, 2026 12 Jan'26

  Intersec Dubai highlights why AI has become critical in the race against cyber attackers

  Cigna Healthcare’s Jean Wiles warns that healthcare security teams must act faster without sacrificing accuracy or compliance as threats driven by artificial intelligence scale

• January 08, 2026 08 Jan'26

  Personal data of thousands stolen in attack on London councils

  The West London council at the centre of a major cyber incident has now started the process of informing residents that their personal data was compromised in the attack

• January 05, 2026 05 Jan'26

  UK government to spend £210m on public sector cyber resilience

  The UK government unveils a £120m Cyber Action Plan to help reinforce and promote IT security resilience across the country's public services

• December 29, 2025 29 Dec'25

  Top 10 cyber security stories of 2025

  AI dominated all tech conversations this year, but the concerns of cyber security professionals extend far beyond. From remote work to supply chains, quantum to identity, there were plenty of other topics for the industry to chew over in 2025.

• December 24, 2025 24 Dec'25

  Top 10 cyber crime stories of 2025

  In many regards, 2025 proved to be a relatively normal year for the cyber security world as threat actors and security pros continued their long-running cat-and-mouse game, but it was also a stand-out year that saw some of the largest cyber attacks ...

• December 23, 2025 23 Dec'25

  Top 10 ANZ stories of 2025

  The 2025 tech landscape in Australia and New Zealand was dotted with major data breaches even as organisations continue to press on with their digital transformation efforts in areas such as AI and automation

• December 19, 2025 19 Dec'25

  ‘Sensitive’ data stolen in Westminster City Council cyber attack

  London borough confirms that data breach affecting three neighbouring councils in a shared IT services operation led to personal information being copied by a third party

• December 19, 2025 19 Dec'25

  UK government confirms Foreign Office cyber attack

  Reports blame Chinese hacking group but minister insists the source of the attack is unclear

• December 17, 2025 17 Dec'25

  ClickFix attacks that bypass cyber controls on the rise

  NCC’s monthly threat report details the growing prevalence of ClickFix attacks in the wild

• December 15, 2025 15 Dec'25

  Top IT predictions in APAC in 2026

  Enterprises across the Asia-Pacific region are expected to prioritise sovereign architectures, double down on securing agentic systems and rewrite their infrastructure playbooks, among other tech trends

• December 09, 2025 09 Dec'25

  OAIC to launch blitz on privacy compliance

  Australia’s privacy watchdog will begin the new year with a compliance sweep targeting businesses that run afoul of privacy rules, including the over-collection of personal information in-person, warning that non-compliance could trigger fines

• December 05, 2025 05 Dec'25

  Cyber teams on alert as React2Shell exploitation spreads

  Exploitation of an RCE flaw in a widely used open source library is spreading quickly, with China-backed threat actors in the driving seat

• December 04, 2025 04 Dec'25

  NCC supporting London councils gripped by cyber attacks

  Three west London councils hit by a cyber attack continue to investigate as services remain disrupted nearly two weeks on

• December 04, 2025 04 Dec'25

  Constrained budgets left security teams short-handed in 2025

  With 2024 seeing surges in security funding cuts, lay-offs and hiring freezes, 2025 brought some relief for cyber pros, but constrained budgets are leaving security teams short-staffed

• December 03, 2025 03 Dec'25

  UK government pledges to rewrite Computer Misuse Act

  Campaigners celebrate as security minister Dan Jarvis commits to amending the outdated Computer Misuse Act to protect security professionals from prosecution

• December 03, 2025 03 Dec'25

  Post Office avoids £1m fine over botched website upgrade data breach

  The Information Commissioner’s Office considered fining the Post Office £1m for a 2024 data breach that let subpostmasters down again

• December 03, 2025 03 Dec'25

  Women in Cybersecurity Middle East marks five years of impact at Black Hat MEA

  As AI reshapes the regional cyber security landscape, diversity and skills development remain at the heart of building a resilient digital workforce

• November 26, 2025 26 Nov'25

  London councils endure wave of cyber attacks, shared IT services hit

  Four London councils – Kensington and Chelsea; Hackney; Westminster; and Hammersmith and Fulham – have suffered cyber attacks, disrupting services and prompting NCSC-supported investigation

• November 26, 2025 26 Nov'25

  US breach reinforces need to plug third-party security weaknesses

  Cyber breach at US financial sector tech provider highlights the risk of third-party vulnerabilities in finance ecosystems

• November 20, 2025 20 Nov'25

  UK targets ‘bulletproof’ services that hosted ransomware gangs

  The UK’s NCA and partners have cracked down on ‘bulletproof’ services that hosted cyber criminal infrastructure

• November 18, 2025 18 Nov'25

  Ransomware resilience may be improving in the health sector

  A Sophos report on ransomware highlights resilience improvements among healthcare organisations but warns that the wider threat is still live and growing

• November 18, 2025 18 Nov'25

  Fintech leaders call for united front against AI-driven cyber crime

  As AI makes financial scams more personalised and convincing, fintech experts have called for deeper collaboration and the use of behavioural analytics and other technologies to protect consumers

• November 14, 2025 14 Nov'25

  Cl0p claims ransomware hit on NHS

  Ransomware gangsters claim to have attacked the NHS, but clarity on the nature of the incident is yet to emerge

• November 12, 2025 12 Nov'25

  US cyber intel sharing law set for temporary extension

  The CISA 2015 cyber intelligence sharing law, which lapsed just over a month ago amid a wider shutdown, will receive a temporary lease of life should attempts to reopen the federal government succeed

• November 12, 2025 12 Nov'25

  Synnovis to notify NHS of data breach after nearly 18 months

  Synnovis, the pathology lab services provider hit by a Qilin ransomware attack in 2024, is notifying its NHS partners that their patient data was compromised, following a lengthy investigation

• November 12, 2025 12 Nov'25

  IT services companies and datacentres face regulation as cyber security bill reaches Parliament

  The Cyber Security and Resilience Bill will require large IT services companies, including datacentres, to report security incidents within 24 hours

• November 11, 2025 11 Nov'25

  Google: Don’t get distracted by AI, focus on real cyber threats

  While hackers are using artificial intelligence to optimise attacks, many of the most damaging breaches still rely on old-school methods, says a top security analyst from Google

• November 09, 2025 09 Nov'25

  Nikkei data breach exposes personal data of over 17,000 staff

  Hackers used stolen login details from an employee's computer to access the Japanese media giant’s Slack messaging platform, with names, email addresses and chat histories potentially exposed

• November 05, 2025 05 Nov'25

  US indicts three cyber pros who moonlit for ransomware gang

  US prosecutors indict three men who allegedly attacked multiple victims with ALPHV/BlackCat ransomware while working as professional cyber incident responders

• November 05, 2025 05 Nov'25

  M&S profits tumble after cyber attack

  M&S profits fall by over 90% in the wake of the spring 2025 cyber attack that crippled the retailer’s systems for weeks

• November 05, 2025 05 Nov'25

  Dutch boardroom cyber security knowledge gap exposed

  Cyber security governance professor warns that executives lack the capability to assess cyber threats in implementation approaches

• November 04, 2025 04 Nov'25

  The Security Interviews: Colin Mahony, CEO, Recorded Future

  Recorded Future’s CEO talks threat intelligence, AI in cyber security and the ever-changing cyber threat landscape

• November 04, 2025 04 Nov'25

  Fewer data breaches in Australia, but human error now a bigger threat

  Australian privacy commissioner warns that the human factor is a growing threat as notifications caused by staff mistakes rose significantly even as total breaches declined 10% from a record high

• November 03, 2025 03 Nov'25

  CrowdStrike: Europe second only to North America for cyber attacks

  Europe faces rising cyber threats from criminals and nation-states, according to CrowdStrike. Ransomware attacks now take just 24 hours, with 22% of global victims being European

• October 29, 2025 29 Oct'25

  Rapid7: Cyber defences stuck in the 1980s as threats mount

  The company’s chief product officer notes that many defence tactics are still stuck in the past, urging organisations to adopt AI-driven security platforms to improve threat detection and response