News

IT operations management and IT support

• May 25, 2021 25 May'21

  Legacy vulnerabilities may be biggest enterprise cyber risk

  While high-profile cyber attacks and zero-days grab headlines, statistics gathered by network security specialists Cato suggest CISOs should be addressing legacy threats

• May 24, 2021 24 May'21

  Air India is latest victim of Sita hack

  Data on millions of people who flew with Air India between 2011 and 2021 appears to have been compromised in the recent Sita supply chain attack

• May 24, 2021 24 May'21

  Dutch researchers build security software to mimic human immune system

  Software could help IT systems develop immunity to some cyber attacks in a similar way to how the body fights infection

• May 20, 2021 20 May'21

  Malicious scans for at-risk systems start minutes after disclosure

  Statistics collated by Palo Alto Networks reveal malicious actors begin scanning the internet for systems at risk of new CVEs within minutes

• May 19, 2021 19 May'21

  Reports of stolen Irish health service data being leaked online

  Leaking of deeply confidential and personal information on patient healthcare marks a new low for the criminal Conti gang

• May 18, 2021 18 May'21

  Microsoft EU Data Boundary dubbed ‘smoke and mirrors’

  Data protection experts claim Microsoft’s decision to create an EU Data Boundary is a tacit admission that it routinely transfers and processes the personal data of European citizens outside the bloc

• May 18, 2021 18 May'21

  Santander says sorry for weekend tech outage

  Bank’s customers were unable to access multiple banking channels because of technical problems

• May 18, 2021 18 May'21

  Cisco acquires Kenna Security amid security expansion

  Cisco announces a new acquisition alongside service enhancements around XDR and SASE in support of its security customers

• May 17, 2021 17 May'21

  Conti ransomware syndicate behind attack on Irish health service

  More details continue to emerge of the significant ransomware attack on Ireland’s HSE

• May 14, 2021 14 May'21

  Colonial Pipeline paid $5m ransom, reports say

  Colonial Pipeline may have paid a significant ransom within hours of being attacked, it has emerged, but it’s unlikely the story ends here

• May 13, 2021 13 May'21

  Mars expands Microsoft strategy to drive business agenda

  Mars plans to drive new data insights and AI across its supply chains to optimise production and lower its carbon footprint

• May 13, 2021 13 May'21

  CISOs weathered the pandemic well, but at personal cost

  Over 80% of CISOs think their existing security capabilities stayed strong during the worst of the Covid-19 pandemic, but now face stress and burnout on an unheard-of scale

• May 12, 2021 12 May'21

  UK government publishes Online Safety Bill draft

  Bill builds on previous commitments by the government, which has added new measures to uphold democracy and freedom of speech while making tech giants more accountable

• May 12, 2021 12 May'21

  Inside DarkSide: Researchers share intel on break-out cyber gang

  Security researchers swap information on the newly famous DarkSide ransomware gang, the group that doesn’t appear to understand what ‘being a criminal’ actually means

• May 12, 2021 12 May'21

  CyberUK 2021: NCSC encourages startups to invest in cyber

  National Cyber Security Centre is launching bespoke cyber security guidance aimed at the UK’s valuable startup community

• May 12, 2021 12 May'21

  Microsoft fixes four critical bugs on lighter Patch Tuesday

  Four critical RCE vulnerabilities put users of various Microsoft products at risk, and should be patched right away

• May 12, 2021 12 May'21

  The Security Interviews: Why helpful bots could hurt vaccine roll-outs

  Earlier this year, spikes in traffic to websites containing information about Covid-19 vaccines were attributed by Imperva to automated bots scraping data. Why is that a problem?

• May 11, 2021 11 May'21

  UK Plc invited to sign up for Early Warning of cyber incidents

  The launch of the Early Warning incident notification service is among the enhancements being made by the NCSC to its service packages

• May 11, 2021 11 May'21

  NCSC cyber guidance targets cloud and home working

  The NCSC’s refreshed cyber security guidance for larger organisations places particular emphasis on cloud, home working and ransomware

• May 11, 2021 11 May'21

  SolarWinds CEO calls for collective action against state attacks

  SolarWinds CEO tells NCSC’s CyberUK conference he is exploring the possibility of collaborating with other companies on collective cyber action against attacks backed by nation states

• May 11, 2021 11 May'21

  Colonial Pipeline ransomware attack has grave consequences

  The ramifications of a major ransomware attack against a US fuel pipeline operator could spread far and wide

• May 10, 2021 10 May'21

  Miscarriages of justice are the potent tip of Post Office scandal

  The miscarriages of justice involving subpostmasters are the most disturbing element of the Post Office Horizon scandal – but it goes much deeper

• May 07, 2021 07 May'21

  Reddit enlists HackerOne to run public bug bounty programme

  Online community platform is opening up its HackerOne bug bounty programme to any ethical hacker who cares to have a look under the bonnet

• May 07, 2021 07 May'21

  Minister promises ‘fair and speedy’ compensation for 555 subpostmasters who defeated Post Office

  Government says it wants to ensure a fair pay-out for the 555 subpostmasters who defeated the Post Office in a legal battle but were then excluded from the resulting compensation scheme

• May 05, 2021 05 May'21

  Dysfunctional cyber, network teams disrupt digital transformation

  Despite shared goals, combative and dysfunctional relationships within specialist tech teams are putting digital transformation projects at risk, according to a report

• May 05, 2021 05 May'21

  Sophos: How timely intervention stopped a ProxyLogon attack

  A recent incident at an undisclosed customer sheds new light on how malicious actors exploit unpatched Microsoft Exchange servers

• May 05, 2021 05 May'21

  Delivering international talent to Helsinki’s tech ecosystem

  Finland’s capital is the envy of the world as a tech hub, but it still faces challenges in attracting skills in a highly competitive global market

• May 05, 2021 05 May'21

  Post Office dishonesty in Horizon scandal is reason enough for statutory public inquiry

  Subpostmasters, MPs and the public call for a full statutory judge-led public inquiry into the Post Office Horizon scandal, following another damning court judgment

• May 04, 2021 04 May'21

  Half of organisations breached via a third party in 12 months

  New report highlights the risks of outsourcing key business processes without paying due care and attention to your service provider’s security

• May 04, 2021 04 May'21

  Infosys to create 1,000 tech jobs in UK

  Infosys joins TCS in announcing the creation of UK IT jobs as India and the UK negotiate a future trading relationship

• May 04, 2021 04 May'21

  Post Office CEO either knew what was going on in Horizon scandal, or was ‘asleep at the wheel’

  Post Office IT scandal CEO has no excuse for her inaction in preventing the biggest miscarriage of justice in UK history, says Criminal Cases Review Commission chairperson

• April 30, 2021 30 Apr'21

  End of support for Build 1909 leaves some Windows open to attack

  Biannual Windows updates free IT staff from major updates, but some people prefer older builds of Windows, which leaves a gaping security hole

• April 29, 2021 29 Apr'21

  Impact of low chip supply spreads

  Covid-19, shifts in consumer purchasing, sanctions and a drought in Taiwan have come together as a perfect storm to squeeze the supply of semiconductors

• April 28, 2021 28 Apr'21

  Recruiters can’t afford to hold out for cyber ‘unicorns’

  The perfect security candidate is hard to find, so hiring policy needs to be more pragmatic

• April 27, 2021 27 Apr'21

  Total cost of ransomware attack heading towards $2m

  Sophos’ latest study finds that ransomware attacks are proving increasingly disruptive to their victims’ finances

• April 26, 2021 26 Apr'21

  Another 38 subpostmasters submit appeals against convictions

  The biggest miscarriage of justice in UK history is set to get bigger as more subpostmasters take their cases to the Court of Appeal

• April 26, 2021 26 Apr'21

  Post Office scandal CEO steps down from roles after massive miscarriage of justice is laid bare

  Former Post Office CEO Paula Vennells has left roles in the church, Morrisons and Dunelm after postmasters’ convictions were overturned in the Court of Appeal

• April 23, 2021 23 Apr'21

  Post Office scandal victims have criminal convictions overturned in Court of Appeal

  Subpostmasters have their criminal convictions overturned after a judge rules that the Post Office prosecuted them without investigating computer errors

• April 22, 2021 22 Apr'21

  Researchers shed more light on APT29 activity during SolarWinds attack

  RiskIQ’s Atlas threat intel team uncovers new patterns and threat infrastructure used in the SolarWind’s attacks

• April 22, 2021 22 Apr'21

  Automation, zero-trust, API-based security priorities for EMEA CISOs

  Report by FireMon sheds light on buyer behaviour across the EMEA region

• April 22, 2021 22 Apr'21

  ToxicEye malware exploits Telegram messaging service

  The Telegram instant messaging service is being used by malicious actors to manage a remote access trojan called ToxicEye

• April 21, 2021 21 Apr'21

  NCSC offers teachers free cyber security training

  The NCSC’s latest security training offer builds on a package of measures designed to protect schools from cyber attack

• April 21, 2021 21 Apr'21

  SonicWall Email Security zero-days need urgent patch

  Users of SonicWall Email Security are advised to patch immediately, but the supplier is being criticised for the pace of its response

• April 21, 2021 21 Apr'21

  Time is running out to probe networks for Emotet

  Security teams will lose an unprecedented opportunity to gain valuable intelligence to enhance their defences when Emotet is finally ‘executed’ in a few days’ time

• April 20, 2021 20 Apr'21

  Chinese APT exploits critical CVE in Pulse Secure VPN

  A newly disclosed vulnerability in Pulse Secure’s VPN is being exploited by a Chinese advanced persistent threat group – assume compromise and mitigate today

• April 20, 2021 20 Apr'21

  Codecov supply chain attack has echoes of SolarWinds

  Supply chain attack on code auditing service may have compromised the likes of HPE and IBM

• April 20, 2021 20 Apr'21

  Banco Santander moving more than 200 servers to cloud per day

  Banco Santander has migrated about 60% of its IT infrastructure to the cloud and is reaping the benefits

• April 20, 2021 20 Apr'21

  Transatlantic relationship strengthens Sweden’s startup sustainability

  Nordic startup network is taking lessons from Canada in getting women into the IT industry

• April 19, 2021 19 Apr'21

  Google and Siemens combine forces to address AI at the industrial edge

  The partnership shows how the public cloud giants are branching out into specialist application areas to different industry sectors

• April 15, 2021 15 Apr'21

  Only government standing in the way of fair compensation for subpostmasters

  The UK government is the only block to fair compensation for subpostmasters who were wrongly punished for accounting shortfalls