News

Hackers and cybercrime prevention

August 23, 2018 23 Aug'18
Cryptographic agility is key to post-quantum security

Although post-quantum security is not an issue for all organisations today, an expert believes that those needing to ensure data is secure for decades to come should aim to achieve cryptographic agility above all else
August 23, 2018 23 Aug'18
Apache Struts users urged to update due to new security flaw

Another security flaw has been discovered in the Apache Struts, which was at the heart of the massive Equifax data breach in 2017
August 22, 2018 22 Aug'18
European cloud adopters still lack basic security

Despite outpacing the rest of the world, the majority of organisations adopting cloud in Europe, the Middle East and Africa lack basic security, a report reveals
August 22, 2018 22 Aug'18
Superdrug denies data breach

Superdrug has warned online customers it believes may have had personal details exposed, but claims its systems were not compromised, in what could be the first GDPR-related extortion attempt

August 21, 2018 21 Aug'18
New Zealand to run national cyber security exercise

The island-nation will test the resilience of its critical infrastructure in November 2018, bringing together multiple agencies to protect assets of national significance
August 21, 2018 21 Aug'18
Online crime costs more than $1m a minute

More than $1m is lost to cyber crime every minute, a report reveals, underlining the increasing and significant threats businesses face online
August 21, 2018 21 Aug'18
Retail and finance top cyber targets

Retail and finance remain the top cyber attack targets, but the second quarter also saw a spike in attacks against the manufacturing industry and an increase in remote desktop attacks, a report reveals
August 21, 2018 21 Aug'18
Microsoft announces free election cyber defence tools

Microsoft has revealed it recently disrupted domains associated with a Russian cyber attack group believed to be targeting US political groups ahead of the midterm elections
August 20, 2018 20 Aug'18
NHS trusts lose nearly 10,000 patient records a year

Report calls for NHS trusts to work to abolish handwritten notes in hospitals to prevent loss of personal documents and to introduce a patient identity protocol
August 20, 2018 20 Aug'18
Planned Australian law raises tech firms’ security concerns

A digital industry group representing some of the world’s largest tech firms is opposed to proposed Australian laws aimed at compelling them to help security agencies and police

August 17, 2018 17 Aug'18
Cyber Security Challenge UK to scale up

Cybersecurity Challenge UK plans to scale up its events and its role in coordinating UK industry efforts to attract talented people to the cyber security profession
August 17, 2018 17 Aug'18
Apple confirms teen hacker took no customer data

Teenage “fan” who broke into Apple’s mainframe from his home in Melbourne is believed to have downloaded 90GB of secure files, but no customer data
August 16, 2018 16 Aug'18
Trump sparks speculation after repealing cyber attack restraints

The US president has sparked speculation about US policy on launching cyber attacks by repealing Obama-era restraints, underlining the need for international rules on cyber warfare
August 16, 2018 16 Aug'18
Global infosec spending to top $114bn in 2018, says Gartner

The need for improved detection, response and privacy is driving the demand for security products and services in response to security risks, business needs and industry changes, Gartner reveals
August 16, 2018 16 Aug'18
Google Chrome flaw puts privacy at risk

Imperva security researcher urges Google Chrome users to update to the latest version after discovering a vulnerability that could be exploited to uncover private data
August 15, 2018 15 Aug'18
ICS security at risk in key verticals, report shows

The security of industrial control systems (ICS) is at risk in key verticals due to under staffing, under investment and human error, a report reveals
August 15, 2018 15 Aug'18
Intel releases fix for latest chip security flaws

Businesses and consumers are advised to download security updates from Intel for new security flaws that could allow attackers to access protected data, but some cloud providers could see a performance impact
August 14, 2018 14 Aug'18
Businesses urged to patch Microsoft flaw allowing MFA bypass

Security researchers are urging enterprises to update their software after the discovery of a vulnerability that could undermine the security provided by multifactor authentication
August 14, 2018 14 Aug'18
Consumers accept fraud danger as online shopping increases, research finds

The majority of UK consumers see the threat of online fraud as “inevitable” as e-commerce popularity rises
August 14, 2018 14 Aug'18
Phishing remains top fraud enabler, RSA reports

Phishing is the most popular way of enabling fraud for cyber criminals, who are also increasingly using rogue mobile apps, mobile browsers and social media, a report reveals
August 14, 2018 14 Aug'18
FBI warns of global ATM cyber crime spree

The FBI has issued a warning to banks that cyber criminals are planning to steal millions in a coordinated worldwide attack on cash machines
August 13, 2018 13 Aug'18
Banks lead in digital era fraud detection

All e-commerce businesses should follow the banks’ lead in how to detect fraud in the digital era, says RSA fraud and risk expert
August 13, 2018 13 Aug'18
Most security pros concerned about election infrastructure

A majority of information security professionals believe that election infrastructure is vulnerable to cyber attack, a survey shows
August 13, 2018 13 Aug'18
UK firms concerned about cyber arms race

Continuous investment and activity are key in the cyber arms race, according to Databarracks, as research shows UK firms are worried about keeping up with security challenges
August 13, 2018 13 Aug'18
Millions of businesses vulnerable to fax-based cyber attack

Hackers could exploit security vulnerabilities in fax machines to launch cyber attacks in millions of organisations around the world, researchers warn, underlining the need for cyber resilience
August 12, 2018 12 Aug'18
Over 146 billion records to be stolen over next five years

The US will bear the brunt of data exfiltration efforts by cyber criminals, though Asia-Pacific nations such as Singapore will not be spared
August 10, 2018 10 Aug'18
Mimecast extends core email security to enable cyber resilience

Mimecast continues to widen its cyber security capability through in-house development and strategic acquisition, as well as extend its core email security technologies to all other areas it applies
August 10, 2018 10 Aug'18
NCR patches ATM vulnerabilities

NCR has patched ATM vulnerabilities discovered by Positive Technologies
August 09, 2018 09 Aug'18
Under half of firms use vulnerability assessments

Less than half of organisations base their cyber defences on strategic vulnerability assessments, and a third of these do the bare minimum to meet compliance requirements, a study shows
August 09, 2018 09 Aug'18
Smart cities a tempting target for cyber attackers

Smart cities are an attractive target for cyber attackers because of the growing number of connected systems embedded throughout their infrastructure
August 09, 2018 09 Aug'18
Brace for more Triton-like attacks, researchers warn

The world has not seen the last of industrial control system (ICS) attacks like Triton, researchers have warned
August 09, 2018 09 Aug'18
Incomplete visibility a top security failing

Incomplete visibility of IT environments is among the most common basic enterprise security failings, as most organisations are still failing to achieve basic cyber security hygiene, a survey reveals
August 08, 2018 08 Aug'18
Check Point warns of WhatsApp vulnerabilities

Researchers are warning of vulnerabilities in WhatsApp that allow threat actors to intercept and manipulate messages sent in a group chat
August 08, 2018 08 Aug'18
Cyber security double agents most common in the UK

Cyber security professionals who alternate between criminal and legitimate activities or move full-time into cyber criminal activity are more common in the UK than other countries, a report reveals
August 08, 2018 08 Aug'18
Australia calls for interventionist approach in new cyber agenda

The Australian government is forming a cyber defence network comprising security agencies and private sector partners to support a more interventionist approach towards cyber security
August 07, 2018 07 Aug'18
AI security hype putting businesses at risk

The hype around artificial intelligence may be putting businesses at risk, according to a study that found most IT decision-makers believe AI is the answer to all cyber security challenges
August 07, 2018 07 Aug'18
Lack of Dmarc email validation puts brands and customers at risk

There is a worldwide lack of Dmarc email validation to defend against fraud and phishing attacks, putting organisations and customers at risk, a study shows
August 07, 2018 07 Aug'18
Industrial control systems a specialised cyber target

Cyber attackers specialising in industrial control systems are fast, efficient and able to move between IT and OT environments, a study has revealed
August 06, 2018 06 Aug'18
Mobile banking Trojans reach all-time high

Mobile banking Trojans topped the list of cyber threats in the second quarter of the year, according to research by Kaspersky Lab
August 06, 2018 06 Aug'18
Virus outbreak at iPhone chip plant could delay shipments

A computer virus at an iPhone chip manufacturing plant could delay shipments of Apple’s latest smartphones, but the impact will be limited, say analysts
August 06, 2018 06 Aug'18
Alibaba Cloud makes deeper inroads into Malaysia

The Chinese cloud supplier’s second availability zone and upcoming DDoS scrubbing centre in Malaysia comes on the heels of growing investments in the Southeast Asian nation
August 03, 2018 03 Aug'18
UK security centre to launch IoT security standard

The London-based Centre for Strategic Cyber Space and Security Science is working on an internet of things security standard and has roped in participants from eight markets
August 03, 2018 03 Aug'18
Google to alert firms of state-sponsored attacks on G Suite users

As cyber security increasingly becomes a market differentiator, Google has announced that businesses using G Suite cloud-based software can opt in to cyber attack alerts
August 02, 2018 02 Aug'18
Gorgon Group shows simple cyber attacks remain effective

A highly effective cyber attack group that appears to be based in Pakistan is carrying out targeted attacks against nation states at the same time as criminal operations, researchers have found
August 02, 2018 02 Aug'18
Reddit breach exposes 2FA flaws

Reddit has reported a password breach despite using 2FA, exposing the weaknesses of two-factor authentication based on mobile text messages
August 02, 2018 02 Aug'18
GDPR harmonised with local laws in Nordic EU states

Sweden provides an interesting challenge for the European Union’s data protection regulation due to its laws around freedom of press and free speech
August 02, 2018 02 Aug'18
Three Carbanak cyber heist gang members arrested

Three alleged members of the Carbanak gang believed to be responsible for more than 100 cyber heists worldwide have been arrested, US authorities have announced
August 01, 2018 01 Aug'18
Bromium evolves virtualisation-based security

Virtualisation-based security firm Bromium has evolved its technology to offer bidirectional protection for applications and underlying operating systems
August 01, 2018 01 Aug'18
Top dark web indicators of compromise

There are 10 common activities on the dark web that indicate a data breach or some other security compromise has taken place, according to a specialist monitoring firm
July 31, 2018 31 Jul'18
SamSam ransomware reaps $5.9m and counting

In just two and a half years, SamSam campaigns are believed to have netted nearly $6m for cyber criminals, an analysis of this adaptive and evasive strain of active ransomware reveals