News

Hackers and cybercrime prevention

August 22, 2019 22 Aug'19
Tech firms join forces to boost cloud security

Top tech firms are to collaborate on open source technologies, tools, frameworks and standards that accelerate the adoption of confidential computing to boost security in cloud and edge computing
August 22, 2019 22 Aug'19
Cyber attackers exploiting poor cloud security

More than a third of organisations report a cyber attack on the cloud environment due to a lack of basic cloud security hygiene
August 21, 2019 21 Aug'19
Healthcare faces triple cyber threat, says FireEye

Criminal and nation-state cyber attackers are increasingly targeting the healthcare industry to steal data, carry out espionage and cause disruption, a report reveals
August 21, 2019 21 Aug'19
Silence APT group eyes APAC banks

Russian-speaking advanced persistent threat group has set its sights on banks in the region, customising its arsenal for targeted attacks

August 20, 2019 20 Aug'19
Human error a big risk to ICS cyber security, study shows

Despite the rise in automation, industrial processes are at risk due to human error, a report on industrial cyber security reveals
August 20, 2019 20 Aug'19
Malware still top security threat, say infosec pros

Malware remains the top security threat to organisations, with ransomware still considered to be the top malware threat and lack of budget the biggest obstacle to defence, a study shows
August 20, 2019 20 Aug'19
Huawei to US: Ban violates free market principles

Huawei has hit back at the US government’s latest moves to restrict its activities
August 20, 2019 20 Aug'19
Even fintech startups battling to meet cyber security challenges

A study shows that most fintech startups, like most banks, are failing to address vulnerabilities in the web and mobile applications, underlining the scale of the challenge
August 19, 2019 19 Aug'19
UK financial account takeovers up, report warns

Commercial cyber criminal services are helping to drive up the number of account takeovers, a fraud report for the first half of the year shows
August 19, 2019 19 Aug'19
Q2 shows ransomware proliferation, Kaspersky warns

Ransomware modifications have more than doubled in the past year, the number of ransomware families has grown, and the number of attempted infections is up nearly 50%

August 19, 2019 19 Aug'19
US extends temporary stay on Huawei ban

American network operators given extra wiggle room to wean themselves off Huawei’s hardware
August 19, 2019 19 Aug'19
How EDR is moving beyond the endpoint

An emerging breed of detection and response offerings is going beyond endpoints to collect and decipher telemetry data from across the enterprise
August 16, 2019 16 Aug'19
Passwordless enterprise already possible, says RSA

The passwordless enterprise is getting easier to attain as the security industry gears up to support a passwordless future, says RSA’s identity chief
August 16, 2019 16 Aug'19
New approach to risk management needed, says Gartner

Most third-party risks are discovered after the initial due diligence period, Gartner study shows, highlighting the need for a new approach to risk management and the importance of effective access controls
August 15, 2019 15 Aug'19
2019 set to be another record year for data breaches

The number of data breach incidents continues to rise and looks set to reach another record this year, with the business sector first in the firing line, according to a mid-year breach report
August 15, 2019 15 Aug'19
Most UK financial firms hit by cyber attack in the past year

The majority of UK financial companies are failing to prevent cyber security incidents, mainly because of employees failing to follow security policies and a lack of security budget, a survey reveals
August 15, 2019 15 Aug'19
Formjacking dominates web-related data breaches

Formjacking has become one of the most popular data stealing methods, say researchers, who urge commercial websites to review all third-party coding practices without delay
August 14, 2019 14 Aug'19
Publicly accessible biometric database highlights key failings

The discovery of a publicly accessible database of biometric information highlights failings by the supplier, the need for supply chain security, and the challenges of using biometric data
August 14, 2019 14 Aug'19
DCMS funding aims to increase diversity in cyber sector

A funding round has been announced as part of the Cyber Skills Immediate Impact Fund (CSIIF) with aims of encouraging more diverse talent into the UK’s cyber security sector
August 14, 2019 14 Aug'19
Cyber criminal collaboration intensifies

The level of cooperation between high-profile cyber threat groups has shifted up a gear, enabling a higher level of automation and making attribution more difficult, research shows
August 14, 2019 14 Aug'19
Digital domain identified as major security threat by Norway’s intelligence service

Norway's intelligence services has revealed the extent of the threat posed to the country by cyber attacks
August 14, 2019 14 Aug'19
Norman evasive cryptominer conquers networks

Cryptomining malware designed to evade detection is capable of invading every device in targeted companies, researchers warn
August 14, 2019 14 Aug'19
UK finance regulator gives extra time for companies to meet payment security rules

Financial Conduct Authority gives companies under its watch an extra 18 months to meet an EU payments security standard
August 14, 2019 14 Aug'19
British Airways e-ticketing system could expose passenger details

British Airways has not addressed a potential leak of passenger details despite warnings from security researchers, but says it is aware of the issue and is taking action
August 14, 2019 14 Aug'19
NTT Security partners with Europol

Link-up is part of a commitment to share strategic information with partners and law enforcement to bolster threat intelligence in the global fight against cyber crime
August 13, 2019 13 Aug'19
UK businesses still overlooking human element in security

Most UK businesses are still failing to address the human element in cyber security as part of an integrated approach, exposing themselves unnecessarily to cyber criminal attacks, a study shows
August 13, 2019 13 Aug'19
BACnet IoT building automation devices vulnerable to attack

A security researcher has revealed that internet-connected building automating devices using the BACnet communication protocol are vulnerable to cyber attack
August 12, 2019 12 Aug'19
Phishing top security threat to business

A new Telefónica security service for business shows that phishing is the most-blocked threat and smaller businesses are a popular attack target in the first two months of deployment
August 12, 2019 12 Aug'19
Digital transformation driving security rethink

Organisations are focusing on internet of things and cloud in developing cyber defence systems, study shows
August 09, 2019 09 Aug'19
McAfee warns of serious security flaw in building controller

Security researchers have demonstrated how simple flaws in building controllers could allow malicious actors to manipulate control systems with devastating effect, highlighting the importance of operational technology security
August 09, 2019 09 Aug'19
F-Secure warns of F5 Big IP-related security issue

F-Secure has discovered security issues relating to an F5 device that it says could potentially turn hundreds of thousands of load balancers into beachheads for cyber attacks
August 09, 2019 09 Aug'19
NCC Group warns of security risks of leading printers

Researchers uncover more than 35 vulnerabilities in six leading enterprise printers, many of which could allow access to corporate networks, underlining the need to counter security risks of embedded systems
August 09, 2019 09 Aug'19
Whistleblowers: James Glenn’s battle with Cisco opens new front on cyber security

James Glenn, a 42-year-old security specialist, fought a 10-year legal battle with Cisco after blowing the whistle on serious security flaws. He lost his job, but has no regrets
August 08, 2019 08 Aug'19
Ransomware a continued threat to business, report warns

Businesses are increasingly becoming the most popular targets for ransomware, which remains a top cyber threat around the world, especially in the US, a report reveals
August 08, 2019 08 Aug'19
Cyber criminals hijacking legitimate website comms

Criminals are exploiting firms’ use of online feedback methods to distribute spam and phishing emails, security researchers warn
August 08, 2019 08 Aug'19
Can you trust pen-testers?

Pen-testers have knowingly posted security workarounds on the public internet that are now commonly used by hackers
August 07, 2019 07 Aug'19
Southeast Asian ‘white hat’ urges more countries to sign the Paris Call

A renowned ethical hacker in Malaysia has called for more nations to support the Paris Call for Trust and Security in Cyberspace to counter the threat of cyber warfare
August 07, 2019 07 Aug'19
Shared files in the cloud are a top ransomware target

Vectra 2019 Spotlight report shows recent ransomware attacks cast a wider net to ensnare cloud, datacentre and enterprise infrastructures
August 07, 2019 07 Aug'19
FireEye identifies dual nature Chinese cyber threat group

Security researchers have identified a China-based cyber threat group engaged in state-spored espionage in parallel with cyber criminal activities targeting multiple industries worldwide
August 07, 2019 07 Aug'19
Industry collaborates to patch SwapGS CPU vulnerability

Newly disclosed SwapGS vulnerability in modern processors has been patched in Windows, Linux and ChromeOS, underlining the importance of keeping systems up to date
August 06, 2019 06 Aug'19
African bank foils suspected North Korean cyber attack

An African bank is among the financial institutions to be targeted by North Korea’s multi-billion dollar cyber theft campaign to support its weapons programmes
August 06, 2019 06 Aug'19
Most UK firms lack confidence in disaster recovery

Only a third of UK firms are confident in their ability to recover from cyber attacks and other disasters, with business continuity still relatively low on the agenda, a study reveals
August 05, 2019 05 Aug'19
DDoS on the rise, warns Kaspersky

Security researchers at Kaspersky are among those warning business that, more than ever, mitigation of distributed denial of service attacks needs to be a key element of cyber defence strategies
August 05, 2019 05 Aug'19
Most UK university applicants at risk of email fraud

The majority of hundreds of thousands of applicants to UK universities are at risk of email fraud before and after A-level results day, due to a failure to implement full Dmarc protection, a study reveals
August 02, 2019 02 Aug'19
Lack of resources top challenge to IT security

A lack of resources is the top challenge to information security professionals, followed by a lack of experience and skills, a survey reveals
August 02, 2019 02 Aug'19
Government continues probe of UK cyber security labour market

The government has announced a second phase of research to help understand the UK's cyber security labour market
August 01, 2019 01 Aug'19
Industrial control system cyber security risk high, report warns

The industrial control system cyber risk to global oil and gas companies is high and rising, as new attack groups continue to enter the arena
August 01, 2019 01 Aug'19
Leaked Sephora databases peddled on dark web

Cyber security firm finds two databases likely to be related to the Sephora data breach that affected online customers in Southeast Asia, Australia and New Zealand
July 31, 2019 31 Jul'19
Cisco pays $8.6m after whistleblower discloses security flaws in video surveillance system

James Glenn, a video surveillance expert working for a Cisco reseller in Denmark, alerted Cisco to security faults and stands to gain a share of a multimillion-dollar settlement with the US government
July 31, 2019 31 Jul'19
Financial services top cyber attack target

Financial services are among the most attractive targets for cyber attackers, security researchers reveal, with phishing and credential stuffing among the top threats