News

Data breach incident management and recovery

• December 15, 2020 15 Dec'20

  Cyber crime victims in the Netherlands not reporting offences

  Dutch victims of online crime rarely report it to the police and when they do, they are often dissatisfied

• December 14, 2020 14 Dec'20

  FireEye identifies flaw in networking monitoring software as US agencies attacked

  Cyber security company says investigations have revealed security breach occurred because of a flaw in a network monitoring software

• December 11, 2020 11 Dec'20

  The week in ransomware: Foxconn and Randstad are high-profile victims

  Foxconn and Randstad are laid low by cyber criminals, while Sophos spills on Egregor, and prognosticators turn to their crystal balls to divine how ransomware will develop in the next 12 months

• December 11, 2020 11 Dec'20

  Disputed PostgreSQL bug exploited in cryptomining botnet

  PGMiner cryptomining botnet remained unnoticed by exploiting a disputed CVE in PostgreSQL

• December 11, 2020 11 Dec'20

  Surge in Covid-19 vaccine phishing scams reported

  Check Point and KnowBe4 share details of a growing number of phishing campaigns using the prospect of a Covid-19 vaccine as a lure

• December 10, 2020 10 Dec'20

  After critical year, Vodafone trains security sights on CNI market

  Vodafone’s security head Steve Knibbs explains how he plans to bring the lessons of a transformative few years in cyber security to bear on new markets

• December 10, 2020 10 Dec'20

  Data on Pfizer/BioNTech Covid-19 vaccine stolen in cyber attack

  The European Medicines Agency has launched a full investigation into an apparent security incident that has seen documents on the Pfizer/BioNTech Covid-19 vaccine stolen

• December 09, 2020 09 Dec'20

  FireEye’s ethical hacking tools stolen in state-backed attack

  Hacking tools used to conduct red team penetration testing were stolen in the state-backed attack on security firm FireEye

• December 07, 2020 07 Dec'20

  HMRC referred 11 data security incidents to ICO in 2019-20

  HM Revenue & Customs shares details of a number of data security incidents that occurred during the 2019-20 financial year in its annual report

• December 07, 2020 07 Dec'20

  A trillion dollars lost to cyber crime every year

  Data collated by McAfee and the Centre for Strategic and International Studies highlights the growing impact of cyber crime

• December 03, 2020 03 Dec'20

  Covid-19 vaccine supply chain attacked by unknown nation state

  An unknown nation state actor is attempting to disrupt the supply of coronavirus vaccines

• December 02, 2020 02 Dec'20

  Double extortion ransomware will be a big theme in 2021

  Defenders will see heightened levels of cyber crime next year as criminals pivot their attacks from data encryption to exfiltration

• December 01, 2020 01 Dec'20

  DHL, Amazon and FedEx are most phished delivery services

  DHL has emerged as the most imitated delivery brand in Europe, accounting for 77% of the total volume of phishing emails received in November 2020

• November 25, 2020 25 Nov'20

  Three cyber criminals arrested in Nigerian BEC investigation

  Prolific cyber criminal gang is thought to have compromised up to half a million victims since 2017

• November 23, 2020 23 Nov'20

  Manchester United praised for swift response to cyber attack

  Manchester United’s systems were attacked last week, and the club has been praised for a swift and decisive response

• November 20, 2020 20 Nov'20

  Security pros fear prosecution under outdated UK laws

  CyberUp, a group of campaigners who want to reform the Computer Misuse Act, finds 80% of security professionals are concerned that they may be prosecuted just for doing their jobs

• November 19, 2020 19 Nov'20

  Covid-19 shift to remote working adds to Earth’s growing e-waste problem

  The shift to remote working has forced firms to purchase new IT equipment, but many are still lacking sustainable end-of-life processes for their devices

• November 19, 2020 19 Nov'20

  Security sector broadly backs Boris Johnson’s Cyber Force

  Security community says the presence of a robust cyber defence force alongside a robust physical one will be vital to the UK’s national security

• November 18, 2020 18 Nov'20

  2021 the year of commodity ransomware, says Sophos

  Sophos researchers anticipate a trickle-down effect in the cyber criminal underground

• November 17, 2020 17 Nov'20

  Kaspersky shuts down data-processing activities in Russia

  Cyber security provider’s data storage and processing activities for customers in Europe, the US and Canada, have now been fully relocated to Switzerland

• November 17, 2020 17 Nov'20

  Ransomware stats overload risks confusing buyers

  UK-based organisations are either more, or less, likely to pay ransoms, depending on which cyber security supplier you want to believe

• November 17, 2020 17 Nov'20

  Financial services data volumes heighten risk of insider breach

  Financial services organisations hold so much data that it is becoming virtually impossible to safeguard properly against data breaches caused by malicious or careless employees

• November 16, 2020 16 Nov'20

  How Standard Chartered approaches cyber security

  Bank uses security-by-design principles and conducts red-teaming exercises among other measures to fend off cyber breaches

• November 16, 2020 16 Nov'20

  Resident Evil studio Capcom confirms scale of Ragnar Locker breach

  Videogame studio says the data of up to 350,000 people was likely to have been compromised in a Ragnar Locker ransomware attack

• November 16, 2020 16 Nov'20

  Human error blamed in Welsh Covid-19 patient data leak

  Public Health Wales accepts recommendations of independent probe into data breach that saw PII on 18,105 coronavirus patients leaked

• November 16, 2020 16 Nov'20

  Hackney systems could be unavailable for months, says council

  A month after a highly disruptive cyber attack on its systems, Hackney Council is still struggling to get back up and running

• November 13, 2020 13 Nov'20

  Ticketmaster fined £1.25m by ICO for failing to protect customer data

  Ticket website’s customer data was exposed through an attack on a third-party chatbot

• November 12, 2020 12 Nov'20

  Online kids’ game Animal Jam confirms large breach

  Cyber criminals have stolen data on 46 million Animal Jam player accounts via a third-party attack

• November 10, 2020 10 Nov'20

  Leaky AWS S3 bucket once again at centre of data breach

  Prestige Software exposed millions of records after failing to pay attention to the security of its cloud instances

• November 10, 2020 10 Nov'20

  IT Priorities 2020: After Covid-19, security goes back to basics

  This year’s transition to remote working highlighted big gaps in the fundamentals of security, as updated TechTarget/Computer Weekly data reveals

• November 06, 2020 06 Nov'20

  NHS warned over Ryuk spreading through Trickbot replacements

  NHS Digital tells healthcare organisations to be mindful of a marked rise in usage of the Bazar and Buer loaders

• November 04, 2020 04 Nov'20

  India and Japan report stronger concern over cyber threats

  Security operations teams in the two Asian giants see the increased volume of cyber threats as their biggest challenge amid the Covid-19 pandemic

• November 02, 2020 02 Nov'20

  NHS weathers cyber crime storm during pandemic, says NCSC

  The NCSC dealt with over 700 incidents in the 12 months to August 2020, with over 200 specifically related to Covid-19, and the NHS a critical area of focus

• November 02, 2020 02 Nov'20

  Maze ransomware shuts down with bizarre announcement

  The operators of Maze announce they are shutting down, and claim their crime spree was merely intended to demonstrate lax security at their targets

• October 30, 2020 30 Oct'20

  Accidental heroes: How one scaleup pivoted to cyber

  Simeon Quarrie designed his business using virtual reality and interactivity as a tool to tell stories that effect cultural change in enterprise environments – then a cyber criminal emptied his bank account

• October 30, 2020 30 Oct'20

  ICO slashes Marriott breach fine to £18.4m

  Reduced fine reflects both improvements made to hotel group’s cyber security and impact of coronavirus on the travel and hospitality sector

• October 29, 2020 29 Oct'20

  Surge in Ryuk ransomware attacks has hospitals on alert

  Russian cyber criminals are conducting a targeted campaign against hospitals with Ryuk ransomware

• October 28, 2020 28 Oct'20

  Trump supporters targeted by cryptocurrency scammers

  The successful breach of Donald Trump’s official website shows up lax security on his campaign team and is yet another timely warning that nobody is immune to cyber crime

• October 28, 2020 28 Oct'20

  Finnish therapy centre accused of covering up cyber attack

  Private therapy practice Vastaamo faces questions over its security and business practices in the months leading up to one of the biggest data breaches in Finland’s history

• October 28, 2020 28 Oct'20

  Barracuda eyes Indochina markets

  Barracuda is looking to expand its local presence and headcount in fast-growing emerging markets of Vietnam, Cambodia and Laos

• October 27, 2020 27 Oct'20

  Calls for clarity over Amazon insider breach

  Security experts call for more clarity from Amazon over an apparent leak of customer data

• October 26, 2020 26 Oct'20

  Highly unusual hacking attack directly threatens therapy patients

  A hacker has directly contacted therapy patients to say their highly personal therapy notes will be put on the internet unless they pay the ransom

• October 23, 2020 23 Oct'20

  Cyber attack on Hackney Council is ‘morally repugnant’, says mayor

  Mayor of Hackney is ‘incredibly angry’ at the cyber criminals behind the attack, which will continue to disrupt key council services for some time

• October 21, 2020 21 Oct'20

  Charities warned over ‘Robin Hood’ cyber criminals

  Accepting donations from cyber criminal groups could be deemed as profiting from crime, money laundering or handling stolen goods – so don’t do it

• October 21, 2020 21 Oct'20

  Customer loyalty accounts in danger from cyber criminals

  Billions of credential stuffing attacks are harvesting valuable customer data for the dark web economy

• October 21, 2020 21 Oct'20

  Retailers get access to new security toolkit

  The British Retail Consortium has worked with the NCSC to develop a new cyber security toolkit pitched at retailers

• October 20, 2020 20 Oct'20

  Hackney Council services to be disrupted ‘for some time’

  Inability to make housing benefit payments is likely to sting some tenants as Hackney cyber attack drags on

• October 20, 2020 20 Oct'20

  Resilient Trickbot down but not yet knocked out

  Global, Microsoft-led effort to disrupt the Trickbot botnet has seen some success, but new command and control servers continue to pop up

• October 20, 2020 20 Oct'20

  BA breach penalty sets new GDPR precedents

  The 90% reduction in the fine levied on BA over a 2018 data breach has legal experts talking about the ramifications for the future of data protection

• October 20, 2020 20 Oct'20

  Six Russians charged over NotPetya and other attacks

  Six members of the APT group known as Sandworm have been charged in the US over a series of attacks including the destructive NotPetya incident