News
IT governance
-
April 15, 2021
15
Apr'21
University of Hertfordshire is latest academic cyber attack victim
Multiple systems are offline at the University of Hertfordshire following a cyber attack
-
April 15, 2021
15
Apr'21
Ireland’s DPC launches probe into Facebook leak
The Irish Data Protection Commission has launched an ‘own volition’ inquiry into the leak of data from 500 million Facebook profiles
-
April 14, 2021
14
Apr'21
FBI accesses ProxyLogon target servers to disrupt cyber criminals
US Justice Department reveals successful court-authorised effort to clamp down on ProxyLogon exploitation
-
April 14, 2021
14
Apr'21
EU set to tilt AI balance in favour of citizen rights
New draft EU regulations aim to protect people from biased decision-making
-
April 14, 2021
14
Apr'21
NSA unearths more MS Exchange vulnerabilities
Microsoft patches more critical vulnerabilities in Exchange Server a month after the ProxyLogon incident, after being warned by the US National Security Agency
-
April 13, 2021
13
Apr'21
MP told to ditch official email over hacking fears
MP Tom Tugendhat claims the intelligence services advised him to switch to the Gmail service due to concerns his parliamentary email could be hacked
-
April 13, 2021
13
Apr'21
Millions of devices at risk from NAME:WRECK DNS bugs
Newly disclosed set of nine DNS vulnerabilities puts over 100 million consumer, enterprise and industrial IoT devices at risk
-
April 09, 2021
09
Apr'21
Cring ransomware hits ICS through two-year-old bug
A long-disclosed vulnerability in Fortinet’s Fortigate VPN servers is being exploited to distribute Cring ransomware
-
April 08, 2021
08
Apr'21
Nation-state cyber attacks double in three years
Cyber attacks backed by nation states are becoming more frequent and varied, moving the world closer to a point of ‘advanced cyber-conflict’, according to a University of Surrey research project
-
April 07, 2021
07
Apr'21
Facebook ducks calls to apologise over huge data leak
Facebook gives its side of the story as data on millions of its users leaks, but is yet to apologise for security lapses that put half a billion people at risk of compromise
-
April 07, 2021
07
Apr'21
Digital Markets Unit starts work on codes of conduct for tech giants
Digital markets regulator officially launched to ensure tech giants such as Facebook and Google cannot exploit their market dominance to crowd out competition and stifle innovation online
-
April 06, 2021
06
Apr'21
Facebook data leak could be outside scope of GDPR
Regulators may be unable to do much about leaked data on 533 million Facebook users, as it seems to have been stolen before GDPR came into force
-
March 31, 2021
31
Mar'21
NHS is apparently closing security skills gap
By the end of 2020, there were more than twice as many in-house security professionals at NHS trusts as there were two years before
-
March 31, 2021
31
Mar'21
Cyber Security Council to champion UK security pros
A new cyber security professional body has launched with the aim of developing and promoting UK cyber security excellence globally and growing the skills base
-
March 30, 2021
30
Mar'21
Ransomware attack on London schools highlights warnings
Ransomware attack on Harris Federation comes just days after a fresh NCSC alert for the education sector
-
March 30, 2021
30
Mar'21
The Security Interviews: How to secure an F1 team in a pandemic
A multi-year digital transformation programme paid off for F1 team Williams Racing when the 2020 season was abruptly postponed thanks to Covid-19. Learn how the team’s CIO has been supporting remote working and protecting data
-
March 29, 2021
29
Mar'21
Backup survey: UK councils’ downtimes five times longer than average
Backup product supplier Veeam’s freedom of information request finds councils’ average downtime is seven hours and that backup and disaster recovery testing is not done frequently
-
March 26, 2021
26
Mar'21
Retailer FatFace pays $2m ransom to Conti cyber criminals
Retailer FatFace paid out a $2m ransom to restore its data following a January 2021 cyber attack by the Conti ransomware syndicate
-
March 26, 2021
26
Mar'21
Remote working burn-out a factor in security risk
After a year of working from the kitchen table, stress and burn-out are increasing, giving rise to more security risks – and Millennials seem to be particularly affected
-
March 25, 2021
25
Mar'21
Cyber security complacency puts UK at risk, says NCSC head
National Cyber Security Centre CEO Lindy Cameron, in her maiden speech in the role, warns of challenges ahead for the UK and sets out the future agenda for cyber
-
March 24, 2021
24
Mar'21
Oil giant Shell hit through Accellion FTA breach
Energy firm discloses cyber attack through Accellion File Transfer Appliance
-
March 24, 2021
24
Mar'21
Apparent drop in cyber incidents highlights underlying problems
UK organisations report fewer cyber security incidents, but the headline data masks more serious issues, according to a report
-
March 24, 2021
24
Mar'21
Cyber criminals forging Covid-19 vaccine certificates
Vaccine passports and certificates are gaining mainstream traction, which means cyber criminals are also on the bandwagon
-
March 23, 2021
23
Mar'21
NCSC beefs up support for education sector after spate of attacks
Refreshed guidance from the NCSC recommends a defence-in-depth strategy as schools and universities face a renewed wave of cyber attacks
-
March 22, 2021
22
Mar'21
$50m ransomware demand on Acer is highest ever
Record-breaking double-extortion cyber attack saw REvil gang exfiltrate financial data from Taiwan-based PC manufacturer
-
March 22, 2021
22
Mar'21
Unionised drivers call on Microsoft to suspend Uber’s Face API licences
Unionised private hire drivers in the UK are calling for Microsoft to suspend Uber’s licences to use its Face API technology after claims the ride-hailing firm’s ID-checking system has led to drivers losing their jobs and having licences revoked
-
March 22, 2021
22
Mar'21
CIO interview: Juliette Atkinson, IT director, Bradford University
Bradford University’s IT director took a different route than most to get into IT leadership
-
March 18, 2021
18
Mar'21
Vaccine passports cannot put basic rights at risk, warns BCS
BCS warns of challenges to come as the government presses on with its plans for Covid-19 vaccine passports
-
March 17, 2021
17
Mar'21
Average ransomware cost triples, says report
The average amount paid out by ransomware victims has grown almost threefold to more than $300,000 per incident, according to a report
-
March 17, 2021
17
Mar'21
Digital Green Certificate proposed for travel in Europe
Digital Green Certificates will supposedly help re-establish freedom of movement within the European Union
-
March 17, 2021
17
Mar'21
Cyber sector welcomes PM’s defence review
Security commentators approve of measures to improve the UK’s cyber resilience, strengthen its R&D and skills base, lead on the development of new technology and promote a free, open, peaceful and secure global internet
-
March 16, 2021
16
Mar'21
MoD partners playing fast and loose with confidential data
Clear spike in data breach incidents at defence partners may reflect better reporting standards, claims MoD
-
March 16, 2021
16
Mar'21
Banks still lack tech skills at the top
Banks have made progress in adding IT knowledge in their boardrooms, but they need more as digital transformation accelerates
-
March 16, 2021
16
Mar'21
Unusual DearCry ransomware uses ‘rare’ approach to encryption
Hybrid approach to encryption used by DearCry bears similarities to WannaCry
-
March 16, 2021
16
Mar'21
Microsoft releases one-click ProxyLogon mitigation tool
Microsoft’s mitigation tool is designed to help customers without dedicated security or IT teams navigate fixing their vulnerable Exchange servers
-
March 16, 2021
16
Mar'21
Government calls for input into Covid-19 vaccine passports
Evidence gathering exercise will inform the development of the UK’s proposed Covid-19 vaccine passport scheme
-
March 15, 2021
15
Mar'21
Microsoft Exchange ProxyLogon attacks spike 10 times in four days
Exploitations of the Microsoft Exchange ProxyLogon vulnerabilities have increased tenfold in just four days
-
March 12, 2021
12
Mar'21
NCSC issues emergency alert on Microsoft Exchange patch
UK’s national cyber agency calls on organisations affected by the ProxyLogon vulnerabilities to patch their Microsoft Exchange Servers immediately
-
March 12, 2021
12
Mar'21
IR35 private sector reforms: IT contractors ‘growing reluctant’ to work for ‘blanket banning’ firms
IT-focused staffing company Ellis Recruitment Group shares its take on how the contracting market is responding to the private sector firms enforcing blanket bans
-
March 12, 2021
12
Mar'21
Web founder calls for ubiquitous, safe internet access for young people
Internet access has a direct correlation to GDP. On the 32nd birthday of the world wide web, its founder calls for improvements to safe access
-
March 12, 2021
12
Mar'21
DearCry ransomware targets vulnerable Exchange servers
As predicted, ransomware gangs have started to target vulnerable instances of Microsoft Exchange Server, making patching an even greater priority
-
March 12, 2021
12
Mar'21
Brewer Molson Coors targeted in cyber attack
Cyber criminals have disrupted beer production at Molson Coors, one of the world’s largest brewers
-
March 11, 2021
11
Mar'21
UK digital regulators set out plans to strengthen cooperation
Digital Regulation Cooperation Forum outlines plans for the coming year, marking a shift towards a more collaborative regulatory approach
-
March 11, 2021
11
Mar'21
Attack on surveillance cameras a warning over security, ethics
The attack on a video surveillance startup by a hacktivist group raises questions not just over cyber security, but the use and extent of surveillance technology
-
March 11, 2021
11
Mar'21
Norwegian government falls victim to Microsoft attacks
Norway’s parliament, the Storting, suffers second major cyber incident in a year as threat groups capitalise on vulnerable Microsoft Exchange Servers
-
March 10, 2021
10
Mar'21
Met Police chooses Capgemini as strategic IT infrastructure services provider
Capgemini has a history of providing the force with day-to-day technology services, and will now deliver its infrastructure services under the Pegasus programme
-
March 10, 2021
10
Mar'21
Patch Tuesday overshadowed by Microsoft Exchange attacks
Microsoft’s March Patch Tuesday update drops amid ongoing fall-out from widespread Exchange attacks
-
March 10, 2021
10
Mar'21
Police crack world’s largest cryptophone network as criminals swap EncroChat for Sky ECC
Belgian and Dutch police have breached the encryption of users of Sky ECC, the world’s largest cryptophone network. There are significant parallels with the international police operation against the EncroChat cryptophone network which led to ...
-
March 09, 2021
09
Mar'21
EBA restores services after Microsoft Exchange attack
European Banking Authority was breached through vulnerabilities in Microsoft Exchange Server, but is now back online
-
March 09, 2021
09
Mar'21
Private equity house buys McAfee enterprise business
Deal to sell off enterprise unit will see McAfee become a pure-play consumer organisation