News

Hackers and cybercrime prevention

• October 04, 2016 04 Oct'16

  Mastercard rolls out selfie payments in UK

  Financial services provider Mastercard announces its cardholders in the UK will be able to use a selfie as authentication to pay for goods

• October 04, 2016 04 Oct'16

  DDoS attacks consistent, relentless and costly, report shows

  The latest global DDoS report from Neustar underlines the importance of investing in appropriate defences as the high volume of attacks looks set to increase

• October 04, 2016 04 Oct'16

  Mirai IoT botnet code release raises fears of surge in DDoS attacks

  Organisations with an online presence should prepare for terabit-class IoT botnet-based DDoS attacks that could knock almost any business offline or disable chunks of the internet, warn security experts

• October 03, 2016 03 Oct'16

  Time to move on with social engineering training, says Jenny Radcliffe

  Organisations need to move from awareness of the risk of social engineering to empowering employees to understand and recognise the threat to protect themselves and the company, says Jenny Radcliffe

• October 03, 2016 03 Oct'16

  Digital apprentice turns social media into power security tool

  Social security is not only a source of info for attackers, but a powerful way to raise awareness of security, as a young cyber security worker is demonstrating

• September 30, 2016 30 Sep'16

  CISOs need to be more business-focused, says Publicis CISO

  Information security leadership is about politics, getting a place at the top table and showing what security can do for the business, according to Publicis CISO Thom Langford

• September 29, 2016 29 Sep'16

  NGOs challenge UK and US mass surveillance in human rights court

  Privacy International, Liberty and the American Civil Liberties Union are among 10 human rights groups backing a landmark challenge to mass surveillance in the European Court of Human Rights

• September 29, 2016 29 Sep'16

  Breaches should be on the decline by now, says infosec veteran John Walker

  A focus on the board, governance and compliance is distracting many infosec leaders from the real objective of securing data, says John Walker

• September 28, 2016 28 Sep'16

  NHS Digital aims to put healthcare on firm cyber security footing

  NHS Digital set to work closely with National Cyber Security Centre (NCSC) to boost healthcare sector cyber security capabilities

• September 28, 2016 28 Sep'16

  UK National Cyber Security Centre set to launch

  NCSC is due to launch officially on 1 October 2016 and will help the healthcare sector deliver consistent quality of data security

• September 27, 2016 27 Sep'16

  Lax perimeter security exposes bank to hacker extortion attempt

  Failure to follow standard network security best practice has exposed a Californian investment bank to cyber criminals’ demands

• September 27, 2016 27 Sep'16

  Yahoo breach underlines need for Security Serious Week

  The recently disclosed Yahoo data breach shows that no business is immune, underlining the need to raise awareness and improve practices, say the organisers of Security Serious Week

• September 26, 2016 26 Sep'16

  Yahoo security still poor despite massive breach, claims Venafi

  Yahoo is likely to have been a victim of its own encryption and security is still poor despite the huge breach that hit the company in 2014, according to security firm Venafi

• September 26, 2016 26 Sep'16

  Growth in UK smartphone market levels off

  Deloitte’s annual study of UK consumer mobile habits reveals that more than 80% of Brits own or have access to a smartphone, and growth is levelling off

• September 26, 2016 26 Sep'16

  Apple to fix backup security vulnerability in iOS 10

  Apple is to issue a security update for a security vulnerability in iOS 10 that could give hackers access to passwords and other security data

• September 25, 2016 25 Sep'16

  Australia must take cyber security opportunity

  Australia may never be able to create an IT industry like that in the US, but it can lead in cyber security

• September 23, 2016 23 Sep'16

  UK government partners with tech startups on cyber security

  Applications are open to cyber security startups for the first of two cyber innovation centres to receive £50m over five years, as part of the government’s £1.9bn National Cyber Security Programme

• September 23, 2016 23 Sep'16

  Yahoo under fire over data breach affecting 500 million users

  Yahoo comes under fire for not detecting and notifying users sooner of the biggest breach of personal details to date

• September 22, 2016 22 Sep'16

  Cyber attack aimed at destruction, says TV5Monde

  TV5Monde counting the cost of not being adequately prepared for a cyber attacked that downed the network in 2015

• September 21, 2016 21 Sep'16

  $81m cyber heist highlights gap between attacker and defenders, says Swift

  Secure messaging service Swift was surprised by the gaps in banks’ cyber security practises highlighted by mega cyber heist, says CISO Alain Desausoi

• September 21, 2016 21 Sep'16

  Qadars Trojan gears up to target UK banks

  Advanced Trojan that has been targeting different regions is now preparing to hit UK banks, according to IBM X-Force Research

• September 20, 2016 20 Sep'16

  Business warned not to be complacent about cyber security

  Lloyds of London survey reveals just how badly some European firms are failing in terms of cyber security and low levels of awareness about the role of cyber insurance

• September 20, 2016 20 Sep'16

  Cyber security a key feature of US rules on self-driving cars

  The US government publishes a policy aimed at ensuring the safety of self-driving cars

• September 19, 2016 19 Sep'16

  Consumers trust banks more than government for biometric security

  UK citizens think banks are the best organisations to provide biometric authentication for payments

• September 16, 2016 16 Sep'16

  Alleged hacker Lauri Love can be extradited to the US, court rules

  Westminster Magistrates’ Court has ruled that alleged hacker, Lauri Love, can be extradited to the US, where he could face a 99-year prison sentence

• September 15, 2016 15 Sep'16

  Cyber security awareness growing within business sector, research shows

  While awareness of cyber security risks is improving, fewer firms know how much an attack is likely to cost them

• September 15, 2016 15 Sep'16

  Cabinet Office role in information security in government not clear

  The UK government has work to do to reduce complexity of security policies, according to the NAO

• September 14, 2016 14 Sep'16

  National Cyber Security Centre boss plans to scale up DNS filters

  National Cyber Security Centre boss Ciaran Martin sets out plans to launch a countrywide firewall, blocking malware and fight hackers

• September 14, 2016 14 Sep'16

  WADA condemns Russian hackers for leaking Olympic athletes' medical data

  The global anti-doping agency confirms attack on database led to leak of data belonging to Olympic athletes

• September 13, 2016 13 Sep'16

  UK SMEs have false sense of cyber security

  Many small businesses have the mistaken impression that they are safe from cyber attacks and the huge damage they can cause

• September 12, 2016 12 Sep'16

  MaidSafe secure internet concept enters testing phase

  Scottish internet startup MaidSafe brings its vision for a more private and secure approach to the web a step closer to reality

• September 09, 2016 09 Sep'16

  Cloud security processes need to mature, says panel

  Many organisations still need to adapt their business practices to ensure security in the cloud, according to a panel of IT leaders

• September 09, 2016 09 Sep'16

  RSA upbeat about future in Dell Technologies

  RSA to maintain its independence, but will benefit from being part of Dell Technologies, says RSA president Amit Yoran

• September 08, 2016 08 Sep'16

  Understanding criminal underground key to defence, says Trend Micro

  Studying criminal undergrounds provides clues as to how to plan cyber defences, says Trend Micro researcher

• September 08, 2016 08 Sep'16

  NHS Digital to expand cyber security service

  NHS Digital’s cyber security arm, CareCert, has developed an e-learning portal, a support service and a security assessment service

• September 08, 2016 08 Sep'16

  RSA’s mission unchanged by Dell-EMC merger, says Amit Yoran

  It is business as usual, says Amit Yoran, chief of EMC security division RSA, as the company officially becomes part of the newly formed tech giant to be known as Dell Technologies

• September 08, 2016 08 Sep'16

  Intel to raise $3.1bn by spinning off security business

  Ending what many saw as an uncomfortable marriage, Intel is to spin off its security business as a standalone pure-play cyber security company

• September 07, 2016 07 Sep'16

  Expanded Security Serious Week returns in October

  The second annual Security Serious Week in October is to include a government-backed conference and an awards ceremony for unsung IT security heroes

• September 07, 2016 07 Sep'16

  Private encryption key sharing worrying but not new, say security experts

  A study has revealed a 40% increase in the past year in the number of internet-connected devices using shared encryption certificates, highlighting that this security risk of mass hacking is growing

• September 07, 2016 07 Sep'16

  Basic security could have prevented OPM breach, says report

  Basic security controls and malware-detection tools could have prevented the breach of more than 21 million records at the US Office of Personnel Management in 2015, claims a congressional report

• September 06, 2016 06 Sep'16

  Identity prominent in Australian security debate

  Identity is at the forefront of the cyber security debate in Australia

• September 06, 2016 06 Sep'16

  Use ransomware to get security buy-in, says Trend Micro CTO

  Ransomware is one of the top cyber threats to business, but organisations should use that to engage stakeholders and review processes and defences, says Trend Micro CTO Raimund Genes

• September 05, 2016 05 Sep'16

  Mobile device use feeds card fraud in Asean region

  Card fraud is rising in Asean countries, with the high use of mobile devices a contributing factor.

• September 05, 2016 05 Sep'16

  Simulated cyber attack in London adds finalists to 2016 UK Cyber Security Challenge

  Ten would-be cyber warriors head to the final of the UK Cyber Security Challenge after showing off their skills to prospective employers in dealing with a simulated cyber attack

• September 02, 2016 02 Sep'16

  Last.FM joins Dropbox in confirming 2012 hack figure

  More than 43 million accounts have been confirmed as compromised in a hack at Last.FM in 2012, underlining the weaknesses of password-based security

• September 02, 2016 02 Sep'16

  Crest report outlines ways to address cyber security gender gap

  Report on the causes and potential remedies for addressing the gender gap in cyber security is aimed at stimulating debate and co-operation in the industry

• September 01, 2016 01 Sep'16

  More IoT botnets connected to DDoS attacks

  Security researchers have found another botnet operation exploiting internet of things devices to carry out powerful distributed denial of service attacks, prompting calls for IoT device makers to improve security

• September 01, 2016 01 Sep'16

  Lessons from the Dropbox breach

  Dropbox is the latest major company to confirm a data breach, albeit four years old, but – as with all recent data breaches by cloud-based services – it highlights some key security lessons

• August 31, 2016 31 Aug'16

  Evidence of DNS tunnelling in two-fifths of business networks

  Cyber criminals are capitalising on the failure of many businesses to examine their DNS traffic for malware insertion and data exfiltration, according to Infoblox

• August 31, 2016 31 Aug'16

  Cyber security breaches reported to ICO double in a year

  An increase in cyber security incidents reported to the Information Commissioner’s Office is further evidence of the need to shift to automated, artificial intelligence-led defences, says Huntsman Security

• August 31, 2016 31 Aug'16

  Swift warns banks of fresh wave of cyber heists

  An undisclosed number of banks have been targeted and some have lost money in a new wave of cyber thefts, Swift has warned

• August 30, 2016 30 Aug'16

  Asean ministers discuss Europol equivalent in Singapore

  Governments in Southeast Asia are considering setting up a regional equivalent of Europol to help fight cyber crime

• August 30, 2016 30 Aug'16

  Encryption hiding malware in half of cyber attacks

  Cyber attackers are using encryption to hide malicious activity, making it increasingly difficult to find as more organisations turn to encryption to protect data, a study has revealed

• August 30, 2016 30 Aug'16

  Less than a third of organisations prepared for IoT security risks

  The security industry needs to address the security basics with the growing number of IoT devices in corporate networks, according to security firm Tripwire

• August 26, 2016 26 Aug'16

  Ramnit Trojan targeting UK banks reactivated

  IBM X-Force researchers advise banks to use adaptive malware detection and real-time endpoint malware intelligence to counter the latest evolution of Ramnit banking malware

• August 26, 2016 26 Aug'16

  Apple patches triple iOS security threat

  Businesses and consumers are being urged to update their versions of Apple's iOS to fix three critical, zero-day vulnerabilities that enable attackers to spy on victims

• August 25, 2016 25 Aug'16

  A quarter of financial sector data breaches linked to lost or stolen devices

  Financial sector breaches in the US doubled in 2015 over the year before, according to a report by security firm Bitglass

• August 25, 2016 25 Aug'16

  French submarine maker data breach highlights challenges of IP security

  French naval contractor data breach proves that protecting intellectual property is challenging, say security experts

• August 24, 2016 24 Aug'16

  UK organisations still not taking ransomware seriously

  Security experts say UK organisations are not taking ransomware attacks seriously enough, after two studies reveal that tens of UK universities and NHS Trusts have been attacked

• August 24, 2016 24 Aug'16

  UK second only to US in DDoS attacks

  Distributed denial of service attacks on UK organisations have eased from a peak in the fourth quarter of 2015, but the UK remains the world’s second most targeted country

• August 23, 2016 23 Aug'16

  Trend Micro confirms rise of ransomware and whaling

  Ransomware is confirmed as a pervasive threat and whaling emerges as a strong trend, according to the latest security report by Trend Micro

• August 23, 2016 23 Aug'16

  400 security events a second monitored on Olympics network

  IT records as well as sporting records were set at the recent Olympic Games in Rio de Janeiro

• August 23, 2016 23 Aug'16

  Cyber criminals target holiday-related P2P media platforms

  Cyber criminals capitalise on the popularity of holiday-related media sites to spread malware

• August 22, 2016 22 Aug'16

  Australian census website failure spreads skepticism

  The public post-mortem of the Australian census website meltdown continues as the IT industry gives its opinions

• August 19, 2016 19 Aug'16

  Expect ransomware arrests soon, says bitcoin tracking firm Chainalysis

  Law enforcement organisations are set to ramp up arrests of cyber criminals behind ransomware attacks, according to financial technology startup Chainalysis

• August 19, 2016 19 Aug'16

  Police arrest woman in connection with Sage data breach

  A woman has been arrested on suspicion of fraud in connection with a data breach at accounting software firm Sage

• August 18, 2016 18 Aug'16

  Isaca holds first online infosec career fair

  Information professionals’ organisation Isaca is to hold an online career fair to give cyber security job seekers direct access to employer organisations

• August 18, 2016 18 Aug'16

  Australian 2016 census sabotage puts a question mark on private cloud

  Industry experts question why the Australian Bureau of Statistics’ website for the 2016 census, which recently underwent a DDoS attack, was not run on public cloud

• August 18, 2016 18 Aug'16

  Nearly two-thirds of IT leaders expect a serious data breach

  Many organisations need to update IT systems to ensure business operations are both truly agile and secure, a report has revealed

• August 17, 2016 17 Aug'16

  Cyber attack recovery 300% dearer due to skills shortage

  The improvement of specialist security expertise is one of the top three drivers for an additional investment in IT security, but many struggle to find people with the skills they need, a report reveals

• August 16, 2016 16 Aug'16

  Cerber ransomware service reaps $195,000 profit in a month

  Franchises such as Cerber are making highly profitable ransomware available to a broader range of cyber criminals, according to a report by security firm Check Point

• August 16, 2016 16 Aug'16

  PoS malware attacks highlights need for security standards in hotel industry

  Ongoing data breaches through point of sale malware highlights the need for security standards and central support for franchisees in the hotel industry, say security experts

• August 15, 2016 15 Aug'16

  Financial sector faces era of cyber mega heists

  Banks and other financial institutions are threatened by a new breed of elite cyber criminals running professional operations that will use any means to achieve their goals, says Barclays security chief

• August 15, 2016 15 Aug'16

  Sage data breach underlines insider threat

  Organisations need to take insider threats more seriously say security experts, as Sage warns that a data breach using an internal log-in may have compromised employee data at nearly 300 UK firms

• August 12, 2016 12 Aug'16

  Financial cyber attacks increase as malware writers join forces

  Financial malware attacks increased 16% in the second quarter of the year, driven by collaboration between the developers of two banking Trojans in the top the financial malware threats, says Kaspersky Lab

• August 11, 2016 11 Aug'16

  Security pros split on government access to cloud data, survey shows

  Despite rapid cloud services adoption, security and compliance concerns revolving around inappropriate use or access of sensitive cloud data continue to loom large, a survey has revealed

• August 10, 2016 10 Aug'16

  Prisons to get power to remotely pull plug on illicit mobile phones

  The Home Office is to give prisons in the UK new powers to cut off illicit use of mobile phones by inmates

• August 10, 2016 10 Aug'16

  Intel to acquire AI firm Nervana Systems

  Chip maker Intel is to acquire artificial intelligence firm Nervana Systems in a bid to take AI to the next level based on its Xeon and Phi processors

• August 09, 2016 09 Aug'16

  PwC Australia uses gamification to teach cyber security lessons

  With the number of cyber incidents identified by Australian organisations more than doubling in the past year, PwC is using an online game to give enterprises first-hand experience of what it means to face a cyber attack

• August 09, 2016 09 Aug'16

  Global infosec spending to reach £63bn in 2016, says Gartner

  Although security spending is moving to detection and response, Gartner expects preventive security to continue strong growth

• August 09, 2016 09 Aug'16

  Oracle Micros breach highlights PoS and supply chain security risks

  Oracle Micros breach shows supply chain and point of sale systems continue to be popular avenues of attack for cyber criminals

• August 09, 2016 09 Aug'16

  Half of vehicle cyber vulnerabilities could give hackers control, study shows

  Half of vehicle vulnerabilities could allow cyber attackers to take control of a vehicle and 71% are easy to exploit, according to a three-year study by IOActive

• August 08, 2016 08 Aug'16

  Australians vent census privacy concerns

  The Australian census has triggered a privacy debate after it emerged that the citizen data it collects will be held for years

• August 08, 2016 08 Aug'16

  Strider cyber attack group deploying malware for espionage

  Symantec security researchers have uncovered a spying campaign by a previously unknown group using modular malware as stealthware

• August 08, 2016 08 Aug'16

  900 million Android devices vulnerable to attackers

  Enterprises and individuals need to install security updates for all devices with vulnerable Qualcomm chip drivers if they want to ensure attackers can‘t take control of them, warns Check Point

• August 05, 2016 05 Aug'16

  Banner Health cyber breach underlines need for faster intrusion detection

  A data breach at Banner Health has highlighted the importance of intrusion detection and prompted calls for greater cyber security investment in the increasingly targeted healthcare industry

• August 05, 2016 05 Aug'16

  Artificial intelligence takes centre stage in cyber security

  Artificial intelligence-led cyber security technology has been in the spotlight at two major industry conferences in Las Vegas, signalling a firm trend in cyber defence research

• August 04, 2016 04 Aug'16

  Italian-based Android RAT spies on mobiles in Japan and China, say researchers

  Researchers discover an Italian-based Android RAT designed for spying that is targeting mobile devices using their unique identification codes

• August 04, 2016 04 Aug'16

  Context warns of VoIP wars at Black Hat USA

  A lack of understanding of modern VoIP and unified communications security opens many service providers and businesses to cyber attack, a Context IS researcher warns at Black Hat USA

• August 04, 2016 04 Aug'16

  Bitcoin exchange hack highlights security weaknesses

  The breach of the Bitfinex bitcoin exchange highlights the need to follow best practices and to improve security around exchanges and wallets, say security experts

• August 03, 2016 03 Aug'16

  One in five businesses hit by ransomware are forced to close, study shows

  More than half of UK companies have been hit by ransomware in the past year, a study on the impacts of this popular attack method has revealed

• August 03, 2016 03 Aug'16

  UAE consumers not confident that their data is safe

  Protecting customer data is a top priority for organisations in the Middle East as threat levels increase

• August 03, 2016 03 Aug'16

  DDoS attack disrupts 123 Reg services despite DDoS protection

  UK domain name and hosting service hit by distributed denial of service attack, underling the importance of adequate mitigation systems

• August 02, 2016 02 Aug'16

  Hacker attacks following Verizon purchase of Yahoo

  A hacker has claimed to have stolen 200 million user account details from Yahoo

• August 02, 2016 02 Aug'16

  Linux botnets on the rise, says Kaspersky DDoS report

  DDoS attack data collected by Kaspersky Lab shows a greater proportion of attacks are coming from hijacked Linux servers and attacks are tending to last longer

• August 02, 2016 02 Aug'16

  Ransomware is a mature business model for cyber criminals, says report

  Ransomware is now an established business model for cyber criminals as malware increasingly uses evasion techniques, second quarter research by PhishMe reveals

• August 02, 2016 02 Aug'16

  Threat intelligence key to fighting cyber crime, says CrowdStrike

  CrowdStrike develops new cyber crime intelligence services by studying the ecosystem and tools that enable criminals to set up and run their cyber attack operations

• August 02, 2016 02 Aug'16

  Enterprises dangerously complacent about mobile threats, says report

  Businesses must ensure mobile security controls are deployed and enforced on every device used to access corporate data and apps, according to MobileIron’s latest mobile security and risk review

• August 01, 2016 01 Aug'16

  ARM expands IoT security team

  Chip maker continues to boost its internet of things security capabilties by expanding its Israeli engineering team

• August 01, 2016 01 Aug'16

  Barclays to use voice recognition for phone banking

  Retail bank says technology will provide secure verification by recognising the unique characteristics of each person’s voice