News

Data breach incident management and recovery

• February 11, 2025 11 Feb'25

  Google: Cyber crime meshes with cyber warfare as states enlist gangs

  A report from the Google Threat Intelligence Group depicts China, Russia, Iran and North Korea as a bloc using cyber criminal gangs to attack the national security of western countries

• February 07, 2025 07 Feb'25

  US lawmakers move to ban DeepSeek AI tool

  US politicians have introduced a bill seeking to ban the use of the DeepSeek AI tool on government-owned devices, citing national security concerns due to its alleged links to the Chinese state

• February 07, 2025 07 Feb'25

  Ransomware payment value fell over 30% in 2024

  Several factors, including the impact of law enforcement operations disrupting cyber criminal gangs and better preparedness among users, may be behind a significant drop in the total value of ransomware payments

• February 06, 2025 06 Feb'25

  UK’s Cyber Monitoring Centre begins incident classification work

  The Cyber Monitoring Centre will work to categorise major incidents against a newly developed scale to help organisations better understand the nature of systemic cyber attacks and learn from their impact

• January 31, 2025 31 Jan'25

  DeepSeek API, chat log exposure a ‘rookie’ cyber error

  Security researchers at Wiz find a trove of DeepSeek data including API secrets and chat logs publicly exposed via an open source database management tool, raising questions about the fast-growing service’s approach to security

• January 29, 2025 29 Jan'25

  Vallance rejects latest charge to reform UK hacking laws

  Science minister Patrick Vallance rejects proposed amendments to the Computer Misuse Act, arguing that they could create a loophole for cyber criminals to exploit

• January 27, 2025 27 Jan'25

  Cyber incident that closed British Museum was inside job

  An IT incident that disrupted visitor access to the British Museum last week was the work of a disgruntled contractor who had been let go

• January 24, 2025 24 Jan'25

  US indicts five in fake North Korean IT contractor scandal

  The US authorities have accused five men, including two American citizens, of involvement in a scheme which saw companies duped into hiring fake North Korean IT contractors

• January 22, 2025 22 Jan'25

  Privacy professionals expect budget cuts, lack confidence

  Over 50% of privacy professionals in Europe expect to see less money earmarked for data security initiatives in 2025, and many don’t have faith their organisations are taking the issue seriously, according to an ISACA report

• January 22, 2025 22 Jan'25

  Funksec gang turned up ransomware heat in December

  The criminal ransomware fraternity was hard at work over the festive period, with attack volumes rising and a new threat actor emerging on the scene

• January 16, 2025 16 Jan'25

  Biden signs new cyber order days before Trump inauguration

  With days left in the White House, outgoing US president Joe Biden has signed a wide-ranging cyber security executive order with far-reaching implications

• January 16, 2025 16 Jan'25

  Russia’s Star Blizzard pivots to WhatsApp in spear-phishing campaign

  The Russian cyber spy operation known as Star Blizzard changed tactics after a takedown operation by Microsoft and the US authorities, turning to widely used messaging platform WhatsApp to try to ensnare its targets

• January 16, 2025 16 Jan'25

  Almost half of UK banks set to miss DORA deadline

  A significant minority of financial services organisations in the UK will not be fully compliant with the EU’s DORA cyber and risk management regulation when it comes into force on 17 January

• January 14, 2025 14 Jan'25

  Barings Law enleagues 15,000 claimants against Google and Microsoft

  Barings Law has signed up 15,000 claimants in a data breach suit against Microsoft and Google. The firm says the tech giants use personal data without proper consent to train AI models

• January 13, 2025 13 Jan'25

  UK government plans to extend ransomware payment ban

  A ban on ransomware payments by UK government departments will be extended to cover organisations such as local councils, schools and the NHS should new government proposals move forward

• January 13, 2025 13 Jan'25

  CNI operators should ask these 12 questions of their OT suppliers

  The NCSC, CISA and others have set out 12 cyber security considerations CNI organisations and other users of operational technology should incorporate into their buying processes to force their suppliers to do better

• January 10, 2025 10 Jan'25

  Mandiant: Latest Ivanti vulns exploited by Chinese cyber spooks

  Threat actors are once again lining up to exploit vulnerabilities in the widely used Ivanti product suite, with an apparent link to Chinese espionage activity

• January 07, 2025 07 Jan'25

  Regional skills plan to boost UK cyber defences

  Over 30 projects in England and Northern Ireland will receive a share of a £1.9m fund designed to enhance cyber security skills and protect small businesses

• January 06, 2025 06 Jan'25

  Government develops quantum tech for military

  A high-tech atomic clock has been developed by a ‘secret lab’ and aims to decrease the reliance on GPS technology

• January 03, 2025 03 Jan'25

  US Treasury incident a clear warning on supply chain security in 2025

  A cyber incident at the US Department of the Treasury – blamed on a Chinese state actor – raises fresh warnings about supply chain risk after it was found to have originated via vulnerabilities in a remote tech support product

• December 27, 2024 27 Dec'24

  Top 10 ANZ stories of 2024

  The 2024 tech landscape in Australia and New Zealand was dotted with developments spanning cloud migrations and AI adoption to heightened data security and real-time data streaming

• December 19, 2024 19 Dec'24

  LockBit ransomware gang teases February 2025 return

  An individual associated with the LockBit ransomware gang has broken cover to tease details of a new phase of the cyber criminal operation's activity, which they claim is set to begin in February 2025

• December 19, 2024 19 Dec'24

  French court refuses to expedite trial of Sky ECC cryptophone distributor Thomas Herdman

  Canadian businessman Thomas Herdman, who was arrested by French police despite agreeing a deal to cooperate with US investigators, has been denied bail after 42 months in pre-trial detention

• December 18, 2024 18 Dec'24

  The Security Interviews: Martin Lee, Cisco Talos

  Threat intel expert and author Martin Lee, EMEA technical lead for security research at Cisco Talos, joins Computer Weekly to mark the 35th anniversary of the first ever ransomware attack

• December 18, 2024 18 Dec'24

  Top 10 cyber security stories of 2024

  Data breaches, data privacy and protection, and the thorny issue of open source security were all hot topics this year. Meanwhile, security companies frequently found themselves hitting the headlines, and not always for good reasons. Here are ...

• December 18, 2024 18 Dec'24

  Top 10 cyber crime stories of 2024

  From ransomware targeting the NHS to nation-state-backed intrusions, 2024 was another big year for cyber criminals and cyber spooks alike, but they didn't have it all their own way as the good guys fought back

• December 16, 2024 16 Dec'24

  The Security Interviews: Stephen McDermid, Okta

  Okta regional chief security officer for EMEA sits down with Dan Raywood to talk about how Okta is pivoting to a secure-by-design champion

• December 12, 2024 12 Dec'24

  Emerging Ymir ransomware heralds more coordinated threats in 2025

  A newly observed ransomware strain has the community talking about more collaboration, and blurred lines, between threat groups next year, according to NCC’s monthly cyber barometer

• December 09, 2024 09 Dec'24

  Bahrain faces legal action after planting Pegasus spyware on UK blogger

  A court has given the go-ahead to UK-based blogger Yusuf Al-Jamri to seek damages from the Kingdom of Bahrain after it deployed spyware from Israel’s NSO Group to hack his phone

• December 06, 2024 06 Dec'24

  TfL cyber attack cost over £30m to date

  TfL provides more detail on the financial impact of the September 2024 cyber attack that crippled several of its online systems

• December 05, 2024 05 Dec'24

  Government agencies urged to use encrypted messaging after Chinese Salt Typhoon hack

  Chinese hacking of US telecom networks raises questions about the exploitation by hostile hacking groups of government backdoors to provide lawful access to telecoms services

• December 04, 2024 04 Dec'24

  Shared digital gateway was source of three NHS ransomware attacks

  Alder Hey children’s hospital confirms ransomware operators accessed its systems through a shared digital gateway, but is standing firm in the face of the gang’s demands

• December 04, 2024 04 Dec'24

  Nordics move to deepen cyber security cooperation

  Nordic countries are increasing collaboration on cyber security amid more sophisticated and aggressive attacks

• December 03, 2024 03 Dec'24

  US updates telco security guidance after mass Chinese hack

  Following the widespread Salt Typhoon hacks of US telecoms operators including AT&T and Verizon, CISA and partner agencies have launched refreshed security guidance for network engineers and defenders alike

• December 02, 2024 02 Dec'24

  APAC businesses face cyber onslaught

  The Asia-Pacific region is a cyber security hotspot, enduring significantly more cyber attacks than the global average, with AI-powered threats and skills shortages exacerbating the problem

• December 02, 2024 02 Dec'24

  NCSC boss calls for ‘sustained vigilance’ in an aggressive world

  NCSC CEO Richard Horne is to echo wider warnings about the growing number and severity of cyber threats facing the UK as he launches the security body’s eighth annual report

• November 29, 2024 29 Nov'24

  Second Merseyside hospital hit by cyber attack

  Hot on the heels of a major cyber attack at a nearby NHS trust, one of Europe’s biggest and busiest children’s hospitals is reportedly scrambling to deal with ransomware gang

• November 28, 2024 28 Nov'24

  Energy sector’s digital shift opens door to cyber threats

  The transition to renewable energy and the increasing integration of IT and OT systems in the energy sector are creating new cyber security challenges

• November 27, 2024 27 Nov'24

  Further disruption expected after latest NHS cyber attack

  IT and security teams at Wirral University Teaching Hospitals NHS Trust continue to work around the clock following a major cyber incident, with services disrupted and no timeline for resolution

• November 26, 2024 26 Nov'24

  Sellafield operator opens dedicated cyber centre

  The UK’s Nuclear Decommissioning Authority has opened a cyber security centre spanning its activities across the nuclear sector

• November 26, 2024 26 Nov'24

  Blue Yonder ransomware attack breaks systems at UK retailers

  UK supermarkets continue to deal with the impact of a ransomware attack on the systems of supply chain software supplier Blue Yonder, which is disrupting multiple aspects of their businesses including deliveries and staff management

• November 26, 2024 26 Nov'24

  Russian threat actors poised to cripple power grid, UK warns

  UK government escalates cyber rhetoric in a speech at a Nato event, saying Russian advanced persistent threats stand ready to conduct cyber attacks that could ‘turn off the lights for millions’

• November 25, 2024 25 Nov'24

  Metropolitan Police officer dismissed for unlawfully accessing Sarah Everard files

  Over 100 Met Police officers and staff have been investigated for accessing sensitive data related to the Sarah Everard case, leading to the dismissal of a Roads and Transport officer who accessed the information while off-duty

• November 25, 2024 25 Nov'24

  Microsoft calls on Trump to ‘push harder’ on cyber threats

  Microsoft’s Brad Smith urges president-elect Donald Trump to keep the faith when it comes to fighting back against hostile cyber actors from China, Iran and Russia

• November 25, 2024 25 Nov'24

  Geopolitical strife drives increased ransomware activity

  The lines between financially motivated cyber criminals and nation state APTs are rapidly blurring, as geopolitical influences weigh heavily on the threat landscape, according to data from NCC

• November 21, 2024 21 Nov'24

  BianLian cyber gang drops encryption-based ransomware

  The Australian and American cyber authorities have published updated intelligence on the BianLian ransomware gang, which has undergone a rapid evolution in tactics

• November 21, 2024 21 Nov'24

  Brit charged in US over Scattered Spider cyber attacks

  A UK national named as Tyler Robert Buchanan has been charged in the US over his alleged involvement in cyber attacks perpetrated by the Scattered Spider gang

• November 20, 2024 20 Nov'24

  Apple addresses two iPhone, Mac zero-days

  Two zero-day vulnerabilities uncovered in Apple’s operating systems could have allowed for arbitrary code execution and cross-site scripting attacks

• November 13, 2024 13 Nov'24

  China’s Volt Typhoon rebuilds botnet in wake of takedown

  Nine months after its malicious botnet comprising legacy routers was disrupted by the Americans, Chinese APT Volt Typhoon is rebuilding and presents as persistent a threat as ever

• November 12, 2024 12 Nov'24

  Zero-day exploits increasingly sought out by attackers

  Threat actors increasingly favour zero-day exploits to attack their victims before patches become available, according to the NCSC and CISA, which have just published a list of the most widely used vulnerabilities of 2023