News

Hackers and cybercrime prevention

• July 08, 2020 08 Jul'20

  Over 15 billion credentials for sale on dark web

  Research by Digital Shadows reveals the scale of the security threat facing consumers as it uncovers 15 billion usernames and passwords stolen in more than 100,000 different data breaches

• July 08, 2020 08 Jul'20

  Security funding soars despite Covid-19 slump, but problems lie ahead

  The overall cyber security funding ecosystem in the UK is healthier than ever despite Covid-19, but the figures mask stark and concerning disparities in where the money is going

• July 07, 2020 07 Jul'20

  Cyber4Summer scheme to divert young people from cyber crime

  Cyber4Summer platform will offer 100 different tracks covering a range of security skills to divert them from falling into a life of cyber crime

• July 07, 2020 07 Jul'20

  MSP Xchanging attacked in ransomware incident

  Specialist managed services provider is restoring customer access to systems after an unspecified ransomware incident

• July 06, 2020 06 Jul'20

  Lorca scale-ups bring diverse security to the fore

  London Office for Rapid Cybersecurity Advancement announces the cyber security scale-ups that will make up its fifth cohort

• July 06, 2020 06 Jul'20

  North Korea behind spate of Magecart attacks

  The Magecart credit card skimmer found on the website of retailer Claire’s Accessories was likely put there by the Lazarus or Hidden Cobra North Korean APT group, reports Sansec

• July 02, 2020 02 Jul'20

  Cops take out encrypted comms to disrupt organised crime

  The UK’s National Crime Agency, alongside other law enforcement agencies in France and the Netherlands, have busted illicit arms and drugs rings after disabling an encrypted comms platform

• July 02, 2020 02 Jul'20

  Locked-down teens flock to NCSC CyberFirst training scheme

  A record number of 14 to 17-year-olds have signed up to the National Cyber Security Centre’s CyberFirst summer school

• July 02, 2020 02 Jul'20

  Sodinokibi gang begins dark web celebrity data auctions

  Group claims to be auctioning confidential legal data on pop stars Mariah Carey, Nicki Minaj and basketball player LeBron James

• July 01, 2020 01 Jul'20

  UK’s unsung cyber security heroes sought

  Nominations have opened for the fifth annual Security Serious Unsung Heroes Awards

• July 01, 2020 01 Jul'20

  Remote workers more aware of security, but still flout the rules

  Almost three-quarters of remote workers reckon they have gained in cyber security awareness during lockdown, but don’t seem to be especially bothered about keeping themselves safe

• July 01, 2020 01 Jul'20

  Mysterious EvilQuest macOS ransomware spreads through torrents

  A new strain of ransomware, dubbed EvilQuest, is threatening Apple Mac environments, and seems to behave quite oddly

• July 01, 2020 01 Jul'20

  FCA estimates about 2.6 million Brits have bought cryptocurrency

  UK financial services regulator says there has been a significant increase in ownership of cryptocurrencies in the UK

• July 01, 2020 01 Jul'20

  FakeSpy Android malware targets Royal Mail app users

  The FakeSpy malware was first identified in October 2017 but is now significantly more powerful and dangerous

• June 30, 2020 30 Jun'20

  Australia to invest a record A$1.35bn in cyber security

  The Australian government is making its largest ever investment in cyber security over the next decade to identify cyber threats, disrupt foreign cyber criminals and build new capabilities

• June 30, 2020 30 Jun'20

  ReversingLabs makes over 100 Yara rules publicly available

  Threat intelligence specialist is making its IP available on GitHub to support malware hunters in their work

• June 30, 2020 30 Jun'20

  BNP Paribas uses biometrics to increase contactless payment limit

  French bank BNP Paribas is enabling customers to make higher value contactless payments through fingerprint-recognition technology

• June 30, 2020 30 Jun'20

  The Security Interviews: What CISOs can learn from Covid-19

  Mike Lloyd, CTO at Redseal, holds 21 cyber security patents and a PhD in stochastic epidemic modelling from Heriot-Watt University in Edinburgh, so is probably the man to talk to when it comes to cyber security in the world of Covid-19

• June 30, 2020 30 Jun'20

  Complex security estates hinder incident response

  The more disparate security tools in use in an organisation, the harder it becomes to mount an effective incident response

• June 29, 2020 29 Jun'20

  Lawyers learn of fresh US allegations against WikiLeaks founder Julian Assange from press reports

  The US has filed an updated indictment against Julian Assange alleging that he conspired with hacking groups to obtain information for WikiLeaks. Defence and prosecution lawyers learned about it from press reports

• June 29, 2020 29 Jun'20

  Phishing back in vogue as ransomware vector

  Researchers have observed an increase in phishing as a means to deliver ransomware payloads – and organisations don’t appear to be prepared

• June 29, 2020 29 Jun'20

  Evil Corp’s latest ransomware project spreading fast

  A new ransomware strain dubbed WastedLocker is spreading rapidly and targeting major corporations

• June 29, 2020 29 Jun'20

  GCHQ launches Manchester accelerator programme to help firms leverage tech for citizen well-being

  Innovation Co-Lab will mentor companies to grow, prevent crime and improve online safety

• June 29, 2020 29 Jun'20

  Making the case for cloud-based security

  Cloud-based security tools can hasten threat detection and response, but adoption will depend on where an enterprise is on the cloud readiness scale

• June 29, 2020 29 Jun'20

  Out of date security laws leave UK plc at risk during pandemic

  The CyberUp coalition has written to Boris Johnson to urge him to reform the UK’s 30 year-old cyber crime laws

• June 26, 2020 26 Jun'20

  Coronavirus: Cyber crime landscape evolving as lockdown eases

  As some countries begin to gradually ease Covid-19 lockdown measures, cyber criminals’ tactics are changing, but the pandemic remains a tempting lure

• June 24, 2020 24 Jun'20

  NCSC catches a million phishes in its nets

  The NCSC has racked up a million suspicious email reports from the public just two months after launching a reporting service, but the lucky sender won’t be receiving a grand prize

• June 23, 2020 23 Jun'20

  Neurodiversity on the rise among career hackers

  More diverse hackers enhance the ability of both traditional and cutting-edge cyber security solutions to find and fix vulnerabilities, according to a new report from Bugcrowd

• June 23, 2020 23 Jun'20

  Twitter contacts business users over data exposure

  Issue relates to how web browsers cached confidential data entered in Twitter’s ads and analytics services, but is unlikely to have resulted in compromise

• June 23, 2020 23 Jun'20

  Flash-based MacOS malware hides in plain sight

  By masquerading as a legitimate Adobe web application, the new malware strains can trick Mac users into bypassing their on-board defences

• June 23, 2020 23 Jun'20

  Concern over digital risk falls dramatically during pandemic

  Brits are understandably more worried about the NHS than personal cyber security

• June 21, 2020 21 Jun'20

  APAC still hotbed for cyber attacks

  Individuals and organisations in APAC are encountering malware more frequently than the rest of the world, study finds

• June 19, 2020 19 Jun'20

  Online shopping fraud hits £16m during lockdown

  A quarter of victims were aged between 18 and 26, says Action Fraud

• June 19, 2020 19 Jun'20

  Australian prime minister confirms country is suffering repeated nation-state cyber attacks

  Concern over critical national infrastructure as cyber attackers repeatedly try to gain access to network of organisations operating in multiple sectors

• June 18, 2020 18 Jun'20

  Cisco patches dangerous Webex vulnerability

  CVE-2020-3347 bug enables cyber criminals to steal meeting records from within Cisco’s Webex service

• June 18, 2020 18 Jun'20

  Check Point uncovers targeted Microsoft Office 365 phishing campaign

  Organised criminal campaign exploited Adobe, Oxford University and Samsung web domains to trick users into giving up their passwords

• June 18, 2020 18 Jun'20

  Zoom U-turns on end-to-end encryption

  Embattled video-conferencing provider Zoom backtracks on previous refusals to provide end-to-end encryption to free users

• June 17, 2020 17 Jun'20

  Cosmetics company Avon offline after cyber attack

  Representatives left unable to place orders after company’s back-end systems went offline over a week ago

• June 16, 2020 16 Jun'20

  Activists call on Zoom to implement encryption for all

  A coalition of tech organisations and nonprofits have urged Zoom CEO Eric Yuan to make end-to-end encryption available to all users

• June 15, 2020 15 Jun'20

  Banking trojans roar back to prominence in May

  Check Point sees an upswing in malicious activity around a number of classic banking trojan malware variants

• June 15, 2020 15 Jun'20

  NatWest develops behavioural biometrics as additional authentication

  Bank is working with Visa to develop behavioural biometrics technology as an extra layer of invisible authentication

• June 15, 2020 15 Jun'20

  Accessories store Claire’s hit by Magecart credit card fraudsters

  Attackers gained access to retailer’s website as long ago as March

• June 12, 2020 12 Jun'20

  NHS email service users ensnared in phishing attack

  More than 100 accounts on the NHSmail service were affected by attack, but health service says no patient data was accessed

• June 12, 2020 12 Jun'20

  Fake contact-tracing apps delivering banking trojans

  Spoof government coronavirus apps are popping up all over the world, says the Anomali Threat Research team

• June 12, 2020 12 Jun'20

  100,000 cheap wireless cameras vulnerable to hacking

  Active devices built by Chinese firm HiChip have been sold in the UK as webcams and connected baby monitors

• June 12, 2020 12 Jun'20

  UN secretary general calls for global digital cooperation

  Antonio Guterres launches roadmap for digital cooperation and calls for world leaders to come together to “connect, respect and protect people in the digital age”

• June 12, 2020 12 Jun'20

  Twitter kills thousands of misinformation accounts

  The accounts were linked to the governments of China, Russia and Turkey, and engaged in systematic operations against pro-democracy activists, political opponents and dissidents

• June 11, 2020 11 Jun'20

  Coronavirus: Bungled British response leads to rise in security risks

  Covid-19 cyber security threats are evolving over the course of the pandemic, becoming more targeted to virus hotspots such as the UK

• June 10, 2020 10 Jun'20

  Decade-old vulnerability among 129 Patch Tuesday fixes

  A 10 year-old bug in Windows Group Policies could easily enable attackers to gain highly privileged user status on target systems, opening the doors to a wave of cyber attacks

• June 10, 2020 10 Jun'20

  Unsecured Elasticsearch server breached in eight hours flat

  Comparitech’s Bob Diachenko wanted to find out how long it would take for hackers to find and attack an unsecured, public internet-facing database, so he set up a honeypot