News
Endpoint security
-
October 12, 2020
12
Oct'20
Cyber security skills ad branded ‘crass’ by minister
Security skills campaign advert depicting a ballet dancer comes in for criticism as the arts sector struggles in the pandemic
-
October 12, 2020
12
Oct'20
Making sense of zero-trust security
Implementing zero-trust security is not an easy feat, but enterprises can still get it right if they approach it from a process perspective and get a handle on their infrastructure footprint
-
October 08, 2020
08
Oct'20
NCSC relaunches SME security guide with home working focus
The NCSC is issuing an updated version of its guide to security for SMEs, reflecting the long-lasting changes to the world of work seen in 2020
-
October 08, 2020
08
Oct'20
Threat of GDPR fines increasingly driving security buying decisions
Scaring the people who hold the purse strings may be the best option for CISOs who need a little extra budget
-
October 06, 2020
06
Oct'20
EU’s top court questions legality of UK phone and internet data surveillance
European Court of Justice rules that the UK and EU member states must comply with EU privacy laws when harvesting people’s sensitive communications data from telecoms and internet companies
-
October 06, 2020
06
Oct'20
CISOs struggle to keep up with MITRE ATT&CK framework
Despite its proven benefits for security, the MITRE ATT&CK framework is proving difficult for many, according to a joint study from McAfee and UC Berkeley
-
October 05, 2020
05
Oct'20
MosaicRegressor APT campaign using rare malware variant
Kaspersky researchers have shared details of a APT campaign utilising a rarely seen and hard-to-stop variety of malware
-
September 29, 2020
29
Sep'20
NCSC expands schools programme to north-east England and Northern Ireland
Following an initial roll-out in Gloucestershire and Wales, the NCSC’s CyberFirst Schools programme is being extended to north-east England and Northern Ireland
-
September 29, 2020
29
Sep'20
NatWest offers online banking customers free security services
Bank responds to a surge in cyber crime targeting users of online banking services
-
September 28, 2020
28
Sep'20
Security now main driving force behind digital transformation
Organisations are urgently remodelling their core technology stack in the light of the Covid-19 pandemic, and this is pushing security to the top of the agenda
-
September 24, 2020
24
Sep'20
Third-party code bug left Instagram users at risk of account takeover
A critical vulnerability in Instagram’s image processing could have allowed attackers to take over not just their victim’s account, but their entire device
-
September 24, 2020
24
Sep'20
NHS whistleblower privacy concerns passed on to regulator, but campaigners not holding their breath
NHS Improvement chair Dido Harding acknowledges receiving concerns raised about the anonymity of whistleblowers, but campaigners have little faith that anything will be done
-
September 24, 2020
24
Sep'20
Government blasted over ‘reckless’ contact-tracing security
The Open Rights Group and Big Brother Watch accuse the government of endangering public health with a reckless attitude to contact-tracing data security
-
September 21, 2020
21
Sep'20
WikiLeaks video ‘electrified’ public to civilian war deaths, court hears
New Zealand investigative journalist and author Nicky Hager said that WikiLeaks’ publication of a video showing a US helicopter firing on civilians, along with the publication of secret war logs, ‘electrified’ the world to civilian deaths
-
September 18, 2020
18
Sep'20
Rampant Kitten spent six years hacking Iranian dissidents
Details emerge of an ongoing campaign by Tehran-backed threat actors targeting dissidents and activists
-
September 17, 2020
17
Sep'20
Saudi Arabia sees cyber security boom as coronavirus bites
Saudi Arabian CIOs have been forced to increase their security posture as the Covid-19 pandemic transforms working methods
-
September 16, 2020
16
Sep'20
Lorca security scaleups to get Splunk data expertise
Lorca inducts Splunk onto its co-marketing programme, giving security scaleups access to new data expertise
-
September 11, 2020
11
Sep'20
Zoom adds two-factor authentication for all users
Latest enhancements to Zoom security make it easier for organisations to protect users and prevent breaches and unauthorised meeting access
-
September 10, 2020
10
Sep'20
Cyber security is next frontier for open source
Open security will facilitate the interoperability and capabilities of cyber security tools while alleviating vendor lock-in for enterprises, says IBM
-
September 10, 2020
10
Sep'20
Lorca security scaleups hit funding milestone
£153m of investment has been raised by Lorca cohort companies in just two years, almost four times the original target
-
September 10, 2020
10
Sep'20
Government launches £500k healthcare security plan
A £500,000 funding pot from the government aims to help support small and mid-sized healthcare firms during the pandemic
-
September 09, 2020
09
Sep'20
Branch-based anti-fraud scheme to be expanded to online banking
A successful branch-based anti-fraud scheme will be expanded by banks to include online and telephone banking
-
September 09, 2020
09
Sep'20
September’s Patch Tuesday heavy on RCE vulnerabilities
Microsoft’s September update contains patches for 129 common vulnerabilities and exposures, including a high number of remote code execution issues
-
September 06, 2020
06
Sep'20
Why predictive threat intelligence is key
Threat intelligence startup Cyfirma is using virtual agents to gather intelligence on potential cyber attacks that are being coordinated in underground forums before they occur
-
September 04, 2020
04
Sep'20
Lockdown sees increase in girls applying for GCHQ cyber courses
The shift to online learning saw an increase in participants for its CyberFirst cyber security training programme, GCHQ found
-
September 03, 2020
03
Sep'20
Only 10% of tech talent have cyber skills to fill skills gap
The UK has a growing need for cyber skills as a result of the pandemic, but few IT professionals have the skills firms actually need
-
September 03, 2020
03
Sep'20
New normal of remote working compounds enterprise security challenges
Sudden changes in priorities, poor network visibility and lack of time cited by Juniper Networks as key issues for security professionals struggling to cope with new norms
-
September 02, 2020
02
Sep'20
Northumbria University suffers major disruption after cyber attack
Some exams cancelled as university appoints external specialists to investigate incident
-
August 27, 2020
27
Aug'20
DDoS downs New Zealand stock exchange for third day
Distributed denial of service attack from overseas has left stock exchange offline for days
-
August 21, 2020
21
Aug'20
Australian regulator sues RI Advice for cyber security lapses
The Australian Securities and Investments Commission is suing RI Advice for cyber security breaches at the financial firm’s authorised representatives
-
August 18, 2020
18
Aug'20
Reports Oracle to enter TikTok bidding war
Oracle may be about to make a bid to acquire the US operations of TikTok from its Chinese parent ByteDance, according to the FT
-
August 14, 2020
14
Aug'20
Russia’s Fancy Bear targets Linux environments with Drovorub malware
The Russian intelligence-linked Fancy Bear group is deploying a new malware called Drovorub against Linux environments as part of a cyber espionage operation, according to US warnings
-
August 13, 2020
13
Aug'20
APAC consumers do not feel responsible for data security
Just one in four consumers believe they should protect their own data, underscoring the tightrope between security and convenience that organisations have been walking on
-
August 12, 2020
12
Aug'20
How Dharma ransomware became an effective services business
New research looks under the bonnet of a Dharma ransomware attack, with the ransomware's ease of use being particularly dangerous for small to medium-sized enterprises
-
August 12, 2020
12
Aug'20
Microsoft patches two zero-days with active exploits
Microsoft drops another major Patch Tuesday update, including fixes for two zero-day exploits that are already being exploited by cyber criminals
-
August 11, 2020
11
Aug'20
NHS hit by thousands of malicious emails at height of pandemic
The NHS received nearly 30,000 malicious emails at the height of the Covid-19 pandemic in March and April
-
August 11, 2020
11
Aug'20
Citrix users urged to patch five XenMobile CVEs
Patches are available for CVEs 2020-8208 through 8212 and should be installed as soon as possible
-
August 11, 2020
11
Aug'20
French data protection authorities to probe TikTok as suitors circle
France’s CNIL has confirmed a new investigation into TikTok’s data protection practices
-
August 07, 2020
07
Aug'20
TikTok to be banned in US in 45 days
Trump says his Executive Orders against Chinese mobile apps are in the interests of dealing with a national emergency
-
August 06, 2020
06
Aug'20
Australia updates cyber security strategy but offers little new
The nation’s latest cyber security strategy includes centralised management of networks and a voluntary code of practice for deploying internet-connected devices, among other areas
-
August 06, 2020
06
Aug'20
Qualcomm chip vulnerability puts millions of phones at risk
Qualcomm has patched multiple vulnerabilities in its chip hardware that left hundreds of millions of smartphones open to compromise by malicious actors
-
August 04, 2020
04
Aug'20
Five signs you’re about to get hit with ransomware
A series of Sophos reports on the ransomware threat landscape shows how security professionals can sniff out a potential ransomware attack before it happens
-
August 02, 2020
02
Aug'20
More data breaches from ransomware attacks in Australia
The number of data breaches caused by ransomware rose to 33 in the first half of 2020 from 13 in the previous six-month period, according to the latest report from the Office of the Australian Information Commissioner
-
July 30, 2020
30
Jul'20
Diversity in cyber improving but inclusion needs work, says NCSC
Study into diversity and inclusion in the cyber security sector has found that diversity is off to a good start, but inclusion is lacking
-
July 29, 2020
29
Jul'20
Serious BootHole vulnerability puts millions of systems at risk
BootHole is a GRUB2 bootloader vulnerability and puts millions of PCs, servers and other devices at risk of compromise
-
July 29, 2020
29
Jul'20
Majority of organisations at risk of cloud data exposure
Report casts doubt on the effectiveness of the shared responsibility model of cloud security
-
July 29, 2020
29
Jul'20
Cosmetics firm Avon faces new cyber security incident
Technical information relating to Avon’s web and mobile sites was inadvertently left exposed on an unsecured Microsoft Azure server
-
July 28, 2020
28
Jul'20
Garmin may have paid hackers ransom, reports suggest
Garmin’s services are coming back online, but the company remains tight-lipped about what exactly happened to it
-
July 28, 2020
28
Jul'20
Digital bank customer data breached through third party
FBI is investigating digital bank customer data breach that occurred via a former third-party supplier
-
July 26, 2020
26
Jul'20
Australia issues new cloud computing guidelines
The new guidance, which comes after the expiry of the government’s cloud services certification programme, will help to bolster Australia’s cyber security resilience