News

Data breach incident management and recovery

• January 15, 2024 15 Jan'24

  Russia hacked ex-MI6 chief’s emails – what they reveal is more Dad’s Army than deep state

  A Russian hacking group that published emails of ex-MI6 chief Richard Dearlove claimed to have uncovered a conspiracy, but it was more Dad’s Army than the ‘deep state’, Computer Weekly and Byline Times reveal

• January 15, 2024 15 Jan'24

  NCA director sacked after WhatsApp and email security breaches

  Nikki Holland, former director of investigations at the NCA, was sacked for “misconduct” after sending sensitive NCA information over personal email and WhatsApp

• January 10, 2024 10 Jan'24

  SEC social media hack highlights value of MFA

  The US SEC briefly appeared to approve new bitcoin trading rules after a social media account was targeted by troublemakers, proving the value of MFA once again

• January 09, 2024 09 Jan'24

  Babuk Tortilla ransomware decryptor made available

  A joint effort between Cisco Talos, Avast and the Dutch police will bring relief to many victims of a variant of the Babuk ransomware known as Tortilla

• January 09, 2024 09 Jan'24

  Study reveals cyber risks to US elections

  With the 2024 US presidential election cycle beginning, a study produced by Arctic Wolf has highlighted big gaps in preparedness and resourcing at government bodies across the US

• January 08, 2024 08 Jan'24

  British Library ransomware attack could cost up to £7m

  The cost of recovering the British Library’s ransomware-stricken IT systems could be up to £7m, it has emerged

• January 03, 2024 03 Jan'24

  Dutch working to promote cooperation in Europe to keep internet safe

  A Dutch cooperative approach offers national and international cooperation opportunities for ISPs to guard against DDoS attacks, lawful interception and detect abuse in networks

• December 27, 2023 27 Dec'23

  Top 10 ASEAN IT stories of 2023

  Organisations across the region have continued to shore up their cyber security posture while investing in infrastructure to pave the way for emerging technologies like GenAI

• December 21, 2023 21 Dec'23

  Top 10 cyber crime stories of 2023

  Ransomware gangs dominated the cyber criminal underworld in 2023, a year that will prove notable for significant evolutionary trends in their tactics

• December 21, 2023 21 Dec'23

  Top 10 storage supplier strategy stories of 2023

  In 2023, we looked at the top storage suppliers, their market share and how they set themselves for a future of hybrid cloud, containerisation and consumption models of purchasing

• December 20, 2023 20 Dec'23

  ALPHV/BlackCat operation down, but maybe not out

  Multinational law enforcement has targeted the operations of the notorious ALPHV/BlackCat cyber extortion gang, but the group’s members appear to remain defiant

• December 19, 2023 19 Dec'23

  Top 10 cyber security stories of 2023

  The past 12 months have seen the security agenda dominated by the usual round of vulnerabilities, concerns over supply chain security and more besides, but it was the chaotic state of global geopolitics that really made an impact

• December 18, 2023 18 Dec'23

  How threat intelligence is applied in DNS security

  Infoblox’s director of security architecture explains how the company leverages its threat intelligence capabilities to help organisations stay ahead of DNS security threats

• December 14, 2023 14 Dec'23

  Government plans to regulate to tackle datacentre threats

  DSIT outlines a range of proposals designed to protect data storage facilities from cyber attacks, as well as physical threats and the effects of climate breakdown

• December 14, 2023 14 Dec'23

  NCSC CEO Lindy Cameron to step down in 2024

  NCSC chief exec Lindy Cameron, who helped lead and elevate the national dialogue on cyber security through major events such as Covid-19, SolarWinds Sunburst and Colonial Pipeline, is to step down in the New Year

• December 13, 2023 13 Dec'23

  How ransomware gangs use the tech media against their victims

  Ransomware gangs are increasingly media-savvy operators, and this means incident response plans now need to account for communications and PR strategies too

• December 13, 2023 13 Dec'23

  Critical UK infrastructure a ‘hostage of fortune’ to ransomware

  A lack of ransomware planning and preparedness at the highest levels of government is leaving UK operators or critical national infrastructure dangerously exposed, according to a Joint Committee report

• December 12, 2023 12 Dec'23

  MoD fined after breach of Afghan staffers’ data put lives at risk

  The MoD has been fined £350,000 by the ICO after an email blunder exposed data on Afghan nationals who had worked with British forces and were at risk of Taliban reprisals

• December 12, 2023 12 Dec'23

  Outdated data protection practice key factor in PSNI data breach

  The August 2023 data breach at the Police Service of Northern Ireland arose chiefly from an outdated approach to data protection and compliance at the force, according to an independent review

• December 11, 2023 11 Dec'23

  Nordic governments join forces to protect data transfers

  Nordic countries deepen their cooperation over cyber security amid heightened threat from neighbouring Russia

• December 08, 2023 08 Dec'23

  Fancy Bear targets Nato entities via critical Outlook flaw

  A vulnerability patched in March has likely been exploited by the Russian state actor Fancy Bear, for over two years, according to the latest intelligence

• December 07, 2023 07 Dec'23

  NCSC exposes Russian cyber attacks on UK political processes

  The NCSC has firmly attributed a long-running campaign of cyber attacks targeting UK political processes to a group run out of Russia’s FSB intelligence agency, known as Star Blizzard

• December 07, 2023 07 Dec'23

  2023 may have seen highest ransomware ‘body count’ yet

  Ransomware, or cyber extortion as it is increasingly being termed, remained the most prominent security threat in 2023 – and thanks to large-scale supply chain attacks, the past 12 months may have seen the most victims ever

• December 07, 2023 07 Dec'23

  How Proofpoint is helping to mitigate AI security threats

  Proofpoint is offering monitoring tools to prevent leakage of sensitive information in generative AI models and other capabilities to mitigate AI mediated attacks

• December 05, 2023 05 Dec'23

  Operator of Sellafield nuclear facility denies hacking claims

  The operator of the Sellafield nuclear site has denied allegations that senior managers covered up a series of cyber security lapses that enabled Chinese and Russian threat actors to compromise its networks

• December 04, 2023 04 Dec'23

  Rhysida ransomware gang hits hospital holding royal family’s data

  Ransomware gang boasts of having stolen data on the royal family in an attack on a private London hospital

• November 30, 2023 30 Nov'23

  Rhysida gang stole hundreds of gigabytes of British Library data

  The Rhysida ransomware gang behind the cyber attack on the British Library has published almost 600GB of stolen data to its dark web leak site

• November 29, 2023 29 Nov'23

  Law enforcement dismembers major ransomware operation in Ukraine

  A joint law enforcement operation between the Ukrainian authorities, Europol and Eurojust has seem five ransomware operators taken into custody

• November 29, 2023 29 Nov'23

  Scope of Okta helpdesk breach widens to impact all users

  Okta has widened the scope of the October breach of its systems to include every customer that has used its helpdesk service, after new information came to light

• November 28, 2023 28 Nov'23

  Meta faces GDPR complaint over processing personal data without 'free consent'

  Paid-for service means data protection is only available to those who can afford it, privacy group argues in data protection complaint

• November 28, 2023 28 Nov'23

  Scope of British Library data breach widens

  Personal data on British Library users has appeared for sale on the dark web following a Rhysida ransomware attack, as the scope of the still-developing incident widens again

• November 27, 2023 27 Nov'23

  The Security Interviews: Zeki Turedi, field CTO Europe, CrowdStrike

  Organisations are racing to keep their security up to date against the latest threats. CrowdStrike’s Zeki Turedi explains how to protect against novel and innovative cyber attacks

• November 24, 2023 24 Nov'23

  APAC organisations warm to microsegmentation

  Nearly two-thirds of organisations in the APAC region see microsegmentation as a way to protect their IT assets, but lack the skills to deploy the technology

• November 23, 2023 23 Nov'23

  MOVEit incident spurred UK decision makers to spend big on cyber

  The MOVEit cyber attacks that unfolded in the spring and summer of 2023 seem to have driven an increase in both ransomware awareness and spend, according to a report

• November 23, 2023 23 Nov'23

  North Korean APTs go all in on supply chain attacks, warns NCSC

  Threat actors linked to the North Korean regime are becoming more adept at targeting software supply chains in the service of their cyber attacks

• November 23, 2023 23 Nov'23

  Australia ups ante on cyber security

  Australia’s new cyber security strategy will focus on building threat-blocking capabilities, protecting critical infrastructure and improving the cyber workforce, among other priorities

• November 22, 2023 22 Nov'23

  An inside look at a Scattered Spider cyber attack

  Threat researchers at ReliaQuest share the inside track on a Scattered Spider cyber attack they investigated

• November 22, 2023 22 Nov'23

  CISA reveals how LockBit hacked Boeing via Citrix Bleed

  As alarm grows around the world about the impact of the so-called Citrix Bleed vulnerability, Boeing has shared details of its experience at the hands of the LockBit ransomware crew

• November 21, 2023 21 Nov'23

  Canada’s Mounties among government employees hit by LockBit

  A LockBit attack on a specialist supplier of relocation services has engulfed multiple government agencies in Canada

• November 21, 2023 21 Nov'23

  Internal documents leaked as Rhysida claims responsibility for British Library ransomware attack

  Ransomware group Rhysida threatens to sell documents stolen from the British Library to the highest bidder

• November 16, 2023 16 Nov'23

  Royal Mail spent £10m on cyber measures after LockBit attack

  Royal Mail has spent approximately £10m on recovery and improved cyber resilience measures in the wake of the January 2023 LockBit ransomware attack

• November 16, 2023 16 Nov'23

  Ransomware gang grasses up uncooperative victim to US regulator

  The ALPHV/BlackCat ransomware gang has added a new tactic to its playbook, going to ever more extreme lengths in search of a pay-off

• November 16, 2023 16 Nov'23

  British Library’s Halloween cyber scare was ransomware

  The British Library has provided an update on an ongoing cyber incident affecting its systems, confirming it to be the result of a ransomware attack

• November 15, 2023 15 Nov'23

  BlackCat affiliate seen using malvertising to spread ransomware

  Researchers at eSentire identified a wave activity from an ALPHV/BlackCat ransomware affiliate which has adopted a somewhat unusual approach to delivering its locker

• November 15, 2023 15 Nov'23

  US government reinforces ICBC hack link to Citrix Bleed

  US Treasury adds weight to reports that a ransomware gang gained access to the systems of Chinese bank ICBC by exploiting a critical Citrix flaw

• November 15, 2023 15 Nov'23

  How Gigamon is making its mark in deep observability

  Gigamon CEO Shane Buckley talks up the company’s ability to inspect encrypted network traffic for malicious activity, how it stands out with its deep observability capabilities and the tailwinds that are fuelling its growth

• November 14, 2023 14 Nov'23

  Fast-acting cyber gangs increasingly disabling telemetry logs

  Sophos guidance for security practitioners and defenders highlights a growing trend for threat actors to disable or wipe telemetry logs to cover their tracks

• November 13, 2023 13 Nov'23

  Rogue state-aligned actors are most critical cyber threat to UK

  The prospect of rogue nation-state-aligned attackers bringing down the UK’s critical infrastructure is keeping the NCSC up at night

• November 13, 2023 13 Nov'23

  Lloyds Bank warns over rising threat of crypto scams

  Report by Lloyds Banking Group finds there has been a 23% increase in cryptocurrency scams in 2023 compared with last year, targeting mostly younger investors

• November 13, 2023 13 Nov'23

  Victims’ legal action over 2015 Carphone Warehouse breach moves forward

  A class action against Currys Retail over the 2015 data breach of Carphone Warehouse customers has been granted permission to move forward in the courts