News

Endpoint security

December 10, 2024 10 Dec'24
iOS vuln leaves user data dangerously exposed

Jamf threat researchers detail an exploit chain for a recently patched iOS vulnerability that enables a threat actor to steal sensitive data, warning that many organisations are still neglecting mobile updates
December 10, 2024 10 Dec'24
Top IT predictions in APAC in 2025

Enterprises across the Asia-Pacific region are expected to focus on securing their AI workloads, invest in energy efficient infrastructure and rethink their platform strategy, among other tech trends in the new year
December 04, 2024 04 Dec'24
Nordics move to deepen cyber security cooperation

Nordic countries are increasing collaboration on cyber security amid more sophisticated and aggressive attacks
December 02, 2024 02 Dec'24
APAC businesses face cyber onslaught

The Asia-Pacific region is a cyber security hotspot, enduring significantly more cyber attacks than the global average, with AI-powered threats and skills shortages exacerbating the problem

November 28, 2024 28 Nov'24
Energy sector’s digital shift opens door to cyber threats

The transition to renewable energy and the increasing integration of IT and OT systems in the energy sector are creating new cyber security challenges
November 26, 2024 26 Nov'24
Sellafield operator opens dedicated cyber centre

The UK’s Nuclear Decommissioning Authority has opened a cyber security centre spanning its activities across the nuclear sector
November 21, 2024 21 Nov'24
BianLian cyber gang drops encryption-based ransomware

The Australian and American cyber authorities have published updated intelligence on the BianLian ransomware gang, which has undergone a rapid evolution in tactics
November 20, 2024 20 Nov'24
Apple addresses two iPhone, Mac zero-days

Two zero-day vulnerabilities uncovered in Apple’s operating systems could have allowed for arbitrary code execution and cross-site scripting attacks
November 20, 2024 20 Nov'24
Microsoft Ignite: A $4m zero-day reward plus $349 thin client

A $4m cyber hackathon prize was revealed at Ignite as part of Microsoft’s latest IT security efforts, as well as a new locked-down client device called Windows 365 Link
November 14, 2024 14 Nov'24
Ping CEO on ForgeRock integration and future of identity

Ping Identity CEO Andre Durand discusses the company’s unified roadmap, commitment to customer stability and growth plans in the evolving identity landscape following the merger with ForgeRock

November 12, 2024 12 Nov'24
Microsoft fixes 89 CVEs on penultimate Patch Tuesday of 2024

High-profile vulns in NTLM, Windows Task Scheduler, Active Directory Certificate Services and Microsoft Exchange Server should be prioritised from November’s Patch Tuesday update
November 12, 2024 12 Nov'24
How quantum computing could reshape financial services

Experts at the Singapore FinTech Festival predict quantum computing will improve risk management, investment strategies and fraud detection in the financial sector, while also posing new challenges for data security
October 25, 2024 25 Oct'24
Dutch critical infrastructure at risk despite high leadership confidence

Stark paradox in Dutch cyber security landscape has business leaders expressing high confidence in their IT infrastructure as cyber attacks rise
October 22, 2024 22 Oct'24
Danish government reboots cyber security council amid AI expansion

Denmark’s government relaunches digital security initiative to protect business sectors and society at large
October 11, 2024 11 Oct'24
NFL and Cisco gain yardage with network and security partnership

Cisco scores contract extension with US sports body NFL to connect and protect 2024 roster of International Games in the UK, Germany, Brazil and Spain in 2025
October 07, 2024 07 Oct'24
IBM: Data breach cost in ASEAN hits new high

The average cost of a data breach in ASEAN grew by 7% from last year, as organisations grapple with increasingly distributed IT environments and complex security systems
October 04, 2024 04 Oct'24
UK telcos including BT at risk from DrayTek router vulnerabilities

A series of vulnerabilities in DrayTek's Vigor router product lines affects multiple comms service providers in the UK, according to new analysis
October 01, 2024 01 Oct'24
Post Office ditches MoneyGram after cyber attack

The Post Office offered a short extension to enable it to asses the impact of the MoneyGram cyber incident, but the contract has now expired and MoneyGram services are no longer available in Post Office branches
September 26, 2024 26 Sep'24
Racist Network Rail Wi-Fi hack was work of malicious insider

Police have revealed that this week’s racist cyber attack on public Wi-Fi networks at stations across the UK appears to have been the work of a malicious insider, after arresting an employee of one of the service providers
September 25, 2024 25 Sep'24
Splunk and Cisco integration moving apace

Splunk is rapidly integrating with Cisco’s technology to enable seamless transitions between their platforms while delivering advanced threat detection capabilities
September 23, 2024 23 Sep'24
Microsoft shares progress on Secure Future Initiative

Microsoft has published a progress report on its Secure Future Initiative, launched last year in the wake of multiple security incidents, and made a series of commitments to improve its internal cyber culture
September 23, 2024 23 Sep'24
UK, US and Canada to collaborate on AI and cyber security

International collaboration agreement will see the governments of Canada, the UK and the US work together to research, evaluate and test new defence technologies
September 18, 2024 18 Sep'24
NCSC exposes Chinese company running malicious Mirai botnet

The NCSC and its Five Eyes allies have published details of the activities of a China-based cyber security company that is operating a Mirai IoT botnet in the service of government-backed intrusions
September 17, 2024 17 Sep'24
First CyberBoost Catalyse startup cohort named

The first group of companies named to a cyber incubator programme run by Plexal and the National University of Singapore includes two growing UK businesses
September 13, 2024 13 Sep'24
Cyber workforce must almost double to meet global talent need

Research from ISC2 finds global cyber workforce needs additional 4.8 million people to fully secure businesses
September 11, 2024 11 Sep'24
September Patch Tuesday: Update before 1 October

Four critical remote code execution bugs in Windows and three critical elevated privileges vulnerabilities will keep admins busy
August 28, 2024 28 Aug'24
Iranian APT Peach Sandstorm teases new Tickler malware

Peach Sandstorm, an Iranian state threat actor, has developed a dangerous new malware strain that forms a key element of a rapidly evolving attack sequence
August 28, 2024 28 Aug'24
Global cyber spend to rise 15% in 2025, pushed along by AI

Security spending will increase at pace in 2025, with artificial intelligence, cloud and consultancy services all pushing outlay to new highs, according to Gartner
August 28, 2024 28 Aug'24
How Kaspersky is driving growth in APAC

Kaspersky is leveraging its threat intelligence capabilities and local market knowledge to navigate geopolitical tensions and expand its footprint across the Asia-Pacific region
August 27, 2024 27 Aug'24
Palo Alto Networks bets on ‘precision AI’

Palo Alto Networks’ regional leader, Steven Scheurmann, explains how machine learning, neural networks and generative AI can help to prevent breaches in what it calls ‘precision AI’
August 22, 2024 22 Aug'24
New Qilin tactics a ‘bonus multiplier’ for ransomware chaos

Sophos X-Ops caught the Qilin ransomware gang stealing credentials stored by victims' employees in Google Chrome, heralding further cyber attacks and breaches down the line.
August 20, 2024 20 Aug'24
Helsinki braced for elevated cyber attacks

The City of Helsinki is increasing its collaboration with cyber security and crime investigators following a major attack on its systems
August 19, 2024 19 Aug'24
Challenges of deploying PQC globally

Quantum computers will eventually be powerful and reliable enough to crack strong encryption. PQC is the answer, but it could take years to deploy
August 19, 2024 19 Aug'24
Popular Microsoft apps for Mac at risk of code injection attacks

Researchers at Cisco Talos turn up evidence suggesting that Microsoft apps running on the Apple macOS operating system are not as secure as they seem
August 14, 2024 14 Aug'24
August Patch Tuesday proves busy with six zero-days to fix

Microsoft patches six actively exploited zero-days among over 100 issues during its regular monthly update
August 05, 2024 05 Aug'24
Chinese cyber attack sparks alert over six-year-old MS vuln

After a proof-of-concept for a six-year-old Microsoft vulnerability emerged in a Chinese APT attack chain, defenders should be on the look-out for exploitation of CVE-2018-0824
August 02, 2024 02 Aug'24
How CrowdStrike is leveraging AI to empower security teams

CrowdStrike CTO Elia Zaitsev explains how the company’s multi-agent AI architecture can help to enhance analyst efficiency and tackle cyber security challenges
August 01, 2024 01 Aug'24
CrowdStrike shareholders sue, alleging false security claims

A US pension fund is lining up a lawsuit against CrowdStrike, claiming the cyber company lied about the integrity of its systems, leading to failings that caused a worldwide IT outage
July 24, 2024 24 Jul'24
CrowdStrike chaos: Enterprises urged to take protective action in wake of botched software update

Enterprises that emerged unscathed from the roll-out of the botched CrowdStrike software update are being urged to view it as a wake-up call rather than a lucky escape
July 21, 2024 21 Jul'24
CrowdStrike update snafu affected 8.5 million Windows devices

About 8.5 million devices globally were hit by the botched CrowdStrike update, with a significant number now back online and operational
July 18, 2024 18 Jul'24
Netscout expands network observability for the digital edge

Network performance management firm announces business edge observability for networks, applications and user experience to mitigate risk and reduce mean time to respond
July 17, 2024 17 Jul'24
How iProov is fending off deepfake fraud

Facial biometrics and controlled illumination can detect liveness, verify identities and help prevent deepfake attacks
July 16, 2024 16 Jul'24
Incubator Plexal heads to Singapore for CyberBoost

Cyber startup hub Plexal expands its presence to Singapore through a new initiative, and sets its sights on helping new UK businesses break into the booming Asia-Pacific market
July 15, 2024 15 Jul'24
How Snowflake is tackling AI challenges

Snowflake’s regional leader Sanjay Deshmukh outlines how the company is helping customers to tackle the security, skills and cost challenges of AI implementations
July 11, 2024 11 Jul'24
Dutch research firm TNO pictures the SOC of the future

In only a few years, security operations centres will have a different design and layout, and far fewer will remain
July 09, 2024 09 Jul'24
Chinese spies target vulnerable home office kit to run cyber attacks

China’s APT40 is ramping up targeting of victims using vulnerable small and home office networking kit as command and control infrastructure, according to an international alert
July 09, 2024 09 Jul'24
Lessons from war: How Israel is fighting Iranian state-backed hacking

The general director of the Israel National Cyber Directorate talks about the rise in cyber attacks and what lessons the country has gleaned to defend against hacking from foreign parties
June 26, 2024 26 Jun'24
Israel’s cyber chief calls for international front against Iranian hackers

Israel’s cyber chief has called for international action against Iran over state-backed hacking
June 21, 2024 21 Jun'24
Kaspersky says it can continue to sell cyber threat intelligence in spite of US ban

The US government is stopping Kaspersky Lab from offering its antivirus software and cyber security tools to US firms and citizens
June 12, 2024 12 Jun'24
RCE flaw and DNS zero-day top list of Patch Tuesday bugs

An RCE vulnerability in a Microsoft messaging feature and a third-party flaw in a DNS authentication protocol are the most pressing issues to address in Microsoft’s latest Patch Tuesday