News

Data breach incident management and recovery

• September 04, 2015 04 Sep'15

  US State Department plans cyber security playbook

  The US State Department issues a request for information to determine the capabilities of commercial industry to provide and maintain a cyber security playbook

• August 10, 2015 10 Aug'15

  Carphone Warehouse data breach hits 2.4 million UK customers

  Carphone Warehouse confirms the authorities have been notified about the breach, and urges customers to take steps to protect themselves

• July 14, 2015 14 Jul'15

  Anyone still running Windows Server 2003 is now at risk

  Businesses still running Windows server 2003 are vulnerable to attack from hackers looking to exploit security holes

• June 11, 2015 11 Jun'15

  Kaspersky Lab praised for handling of Duqu 2.0 cyber attack

  Kaspersky Lab determined the best approach to cyber attack was to not only admit that it had been hacked, but also to provide extensive information on the malware

• June 02, 2015 02 Jun'15

  The drivers and inhibitors of cyber security evolution

  A study shows a shift in IT security spending to detection and response – but why are most organisations falling way behind the more enlightened front runners?

• April 30, 2015 30 Apr'15

  Ryanair remains tight-lipped over £3.3m hacker theft

  Ryanair provided no details of how hackers took £3.3m from one of its bank accounts, as industry pundits call for greater collaboration

• April 17, 2015 17 Apr'15

  Cyber security boot camp launched to boost skills

  Sans Cyber Academy unveils eight-week security boot camp after businesses demand more cyber security specialists

• April 15, 2015 15 Apr'15

  Banks hide cyber crime losses, says City of London Police

  Banks obscure the amount of money lost to cyber fraudsters – preferring to write off cyber theft as operating losses – says the City of London Police

• April 14, 2015 14 Apr'15

  Security risk potential linked to young, mobile users

  A study conducted by wireless supplier Aruba Networks has identified a distinct cohort of high-risk, security-agnostic workers

• March 19, 2015 19 Mar'15

  Target agrees to $10m breach compensation

  US retailer Target has agreed to a $10m compensation package for victims of its 2013 data breach

• March 18, 2015 18 Mar'15

  Premera hack exposes 11 million financial and medical records

  US health insurance firm Premera Blue Cross reveals an IT systems breach, exposing financial and medical records of 11 million customers

• March 09, 2015 09 Mar'15

  2015 IT priorities: SDN yet to prove itself, fear of network hacks growing

  In Computer Weekly’s 2015 IT priorities study, software-defined networking is still behind management and monitoring as a networking priority

• February 27, 2015 27 Feb'15

  Case study: Norwegian insurer invests in Darktrace machine-learning cyber defence

  Shipping insurance company DNK hopes to inspire the rest of the shipping industry to adopt Darktrace’s cyber defence system

• February 12, 2015 12 Feb'15

  Damballa report highlights the limitations of prevention-centric security

  Anti-virus (AV) suppliers can take more than six months to create signatures for malware, according to a report from security firm Damballa

• January 06, 2015 06 Jan'15

  Online money transfer provider Xoom suffers multimillion-dollar fraud

  Digital money transfer provider Xoom has admitted to suffering a $30.8m loss at the hands of fraudsters

• December 17, 2014 17 Dec'14

  Fears over the IT security of new banks are overblown

  Challenger banks such as PayPal are perceived to be less secure than traditional banks when protecting personal data. But is this the case?

• December 17, 2014 17 Dec'14

  Cabinet Office begins procurement for next stage of Gov.uk Verify

  The Cabinet Office has submitted a tender notice for a £150m three-year framework for the provision of identity assurance services

• December 17, 2014 17 Dec'14

  US interception in the EU faces new legal challenges

  US government orders against Microsoft to hand over email data 'infringes privacy legislation' in other countries

• November 28, 2014 28 Nov'14

  CGI secures communications between pilots and air traffic control

  Satellite communications firm Inmarsat has outsourced the provision of security IT and services to CGI

• November 17, 2014 17 Nov'14

  US State Department bolsters email security after suspected breach

  The US State Department took its unclassified email system offline to bolster security after a suspected breach in October 2014

• November 11, 2014 11 Nov'14

  US Postal Service latest government target for cyber attack

  Hackers breach the networks of the US Postal Service in the latest of a series of attacks on US government agencies

• October 30, 2014 30 Oct'14

  Many firms still unprepared for cyber attack, EY survey shows

  More than a third of organisastions have no real-time insight on cyber risks necessary to combat rising threats, a survey has shown

• October 28, 2014 28 Oct'14

  Most businesses do not understand risks of data breaches, study finds

  More than 70% of businesses do not understand fully the risks associated with data breaches, a study shows

• October 27, 2014 27 Oct'14

  Incident response: a common failing

  Organisations hit by cyber attacks often lack an effective incident response plan. Why are so many unprepared?

• October 27, 2014 27 Oct'14

  Cloud providers rush to build European datacentres over data sovereignty

  Cloud providers IBM and Google build datacentres in the EU as enterprises insist on keeping their data in Europe

• October 10, 2014 10 Oct'14

  Azure CTO Mark Russinovich's top ten public cloud security risks

  Microsoft Azure cloud CTO Mark Russinovich identified ten key security risks of public cloud services

• October 09, 2014 09 Oct'14

  WordPress most attacked application

  Websites that run the WordPress content management system are attacked 24% more often than those using other systems

• October 08, 2014 08 Oct'14

  Malware being used to steal cash from ATMs

  Criminals are using malware to steal cash from ATMs without debit and credit cards

• September 22, 2014 22 Sep'14

  Home Depot under fire for data breach notification

  US retailer Home Depot criticised for delays in telling customers their payment card details may have been compromised

• September 17, 2014 17 Sep'14

  KPMG: IoT, 3D printing and healthcare IT to have most impact

  Internet of things (IoT), 3D printing and biotech or healthcare IT are among the IT trends that will change the way people work and live

• September 15, 2014 15 Sep'14

  Salesforce issues advice on avoiding Dyreza attack

  Salesforce has issued a set of guidelines on tightening security after a number of its customers were targeted by the Dyreza email virus

• September 09, 2014 09 Sep'14

  EY seeks tech startups to address challenges of right to be forgotten

  Professional services firm Ernst & Young is looking for startups to find technology solutions to the ‘right to be forgotten’ regulation

• August 11, 2014 11 Aug'14

  USB-connected devices present cyber vulnerabilities

  Connecting devices to computers using a USB port could lead to security breaches, say Berlin-based researchers

• August 05, 2014 05 Aug'14

  Cyber Security Challenge UK takes on the internet of things

  The latest level of the Cyber Security Challenge will involve participants hacking devices connected to the internet of things

• July 31, 2014 31 Jul'14

  Paddy Power hit by data breach in 2010

  Gambling firm Paddy Power owns up to 2010 data breach after recovering a compromised dataset in Canada

• July 04, 2014 04 Jul'14

  Barclays passes government’s ‘internet-born threat’ test

  Barclays Bank has been awarded the government’s cyber security certificate for digital banking services after independent tests of services such as Pingit

• July 04, 2014 04 Jul'14

  Security Think Tank: The dos and don’ts of a good incident response plan

  What does a good information security incident response plan look like?

• July 02, 2014 02 Jul'14

  ISPs take legal action against GCHQ over mass network infrastructure surveillance

  Six global internet service providers (ISPs) have filed a legal complaint calling for a halt to GCHQ’s use of network infrastructure for surveillance

• June 17, 2014 17 Jun'14

  Domino’s breach underlines value of personal data, say experts

  The latest cyber breach to hit a high-profile brand underlines the high value of personal data, say security experts

• May 23, 2014 23 May'14

  eBay under fire over handling of data breach

  eBay is coming under increasing criticism over its handling of the data breach that exposed millions of user records

• May 21, 2014 21 May'14

  eBay reveals major security breach and urges users to change passwords

  eBay has revealed it was hit by a major cyber attack earlier this year, and is urging users to change their site passwords.

• May 20, 2014 20 May'14

  Shell thinks technology first in preparation for internet of everything

  Shell is reshaping its business to think technology first as it uses the internet of everything to change its business processes

• April 28, 2014 28 Apr'14

  US judge orders Microsoft to hand over email data held in Dublin

  A US Judge has ordered Microsoft to give the District Court access to the contents of one of its customer’s emails stored on a server located in Dublin

• April 25, 2014 25 Apr'14

  Cyber threat detection paramount, says SANS fellow

  Cyber threat prevention is ideal, but detection is a must, says Eric Cole, SANS Institute fellow

• April 17, 2014 17 Apr'14

  Datacentre lessons learnt from Heartbleed bug

  The Heartbleed bug, an OpenSSL flaw affecting millions of websites, has some lessons for datacentre providers and operators

• April 08, 2014 08 Apr'14

  Law Society advises legal industry's IT teams over cloud

  The Law Society has published best-practice advice for legal firms' IT teams that are considering using cloud computing, following increased use of the cloud to store data

• February 05, 2014 05 Feb'14

  Bank of England publishes Waking Shark II cyber security exercise results

  Bank of England publishes the results of its Waking Shark II security exercise, which tested financial institutions' contingency plans for cyber attack

• January 22, 2014 22 Jan'14

  CERT-UK to drive international cyber security collaboration

  The UK’s new national computer emergency response team (CERT-UK) is set to drive international cyber security collaboration once it becomes operational

• January 17, 2014 17 Jan'14

  Internet at risk of 'cybergeddon' says WEF

  Internet is at risk of fragmenting amid concerns over spying and cyber crime, says World Economic Forum

• January 15, 2014 15 Jan'14

  NSA uses secret radio tech to spy on offline computers

  The US National Security Agency (NSA) has the capacity to monitor, enter and alter data on computers even if the machines are not connected to the internet, it has emerged