News

IT risk management

• September 25, 2024 25 Sep'24

  CrowdStrike apologises to US government for global mega-outage

  CrowdStrike executive Adam Meyers appears before a US government committee to explain the series of errors that led directly to one of the biggest IT outages in history

• September 25, 2024 25 Sep'24

  Splunk and Cisco integration moving apace

  Splunk is rapidly integrating with Cisco’s technology to enable seamless transitions between their platforms while delivering advanced threat detection capabilities

• September 24, 2024 24 Sep'24

  Unique malware sample volumes seen surging

  BlackBerry’s latest ‘Global threat intelligence’ report details a surge in unique malware samples as threat actors ramp up the pace of targeted attacks

• September 23, 2024 23 Sep'24

  Microsoft shares progress on Secure Future Initiative

  Microsoft has published a progress report on its Secure Future Initiative, launched last year in the wake of multiple security incidents, and made a series of commitments to improve its internal cyber culture

• September 23, 2024 23 Sep'24

  Home Office eVisa scheme is ‘broken’, says Open Rights Group

  Digital rights campaigners say the Home Office’s plan to make its new electronic Visa scheme a real-time online-only process is part and parcel of the 'hostile environment' around immigration status

• September 23, 2024 23 Sep'24

  UK, US and Canada to collaborate on AI and cyber security

  International collaboration agreement will see the governments of Canada, the UK and the US work together to research, evaluate and test new defence technologies

• September 18, 2024 18 Sep'24

  NCSC exposes Chinese company running malicious Mirai botnet

  The NCSC and its Five Eyes allies have published details of the activities of a China-based cyber security company that is operating a Mirai IoT botnet in the service of government-backed intrusions

• September 18, 2024 18 Sep'24

  Europol provides detail on Ghost encrypted comms platform takedown

  Law enforcement bodies from across the world have revealed how they collaborated to bring down encrypted network Ghost and the new ways of working that have been established with Europol at the centre

• September 17, 2024 17 Sep'24

  Salesforce’s agentic AI platform to transform business automation

  CRM giant’s Agentforce lets organisations build and deploy autonomous agents to automate business processes through advanced learning and data integration

• September 17, 2024 17 Sep'24

  First CyberBoost Catalyse startup cohort named

  The first group of companies named to a cyber incubator programme run by Plexal and the National University of Singapore includes two growing UK businesses

• September 16, 2024 16 Sep'24

  Crest secures FCDO funding to help overseas countries increase their cyber-readiness

  Non-profit Crest is launching an initiative to help overseas, private-sector firms get better prepared for cyber threats

• September 15, 2024 15 Sep'24

  UK unites nations to discuss closing global cyber skills gap

  The UK government invites representatives from around the world to a summit to discuss how to address global IT security skills gap

• September 13, 2024 13 Sep'24

  Cyber workforce must almost double to meet global talent need

  Research from ISC2 finds global cyber workforce needs additional 4.8 million people to fully secure businesses

• September 11, 2024 11 Sep'24

  Datacentres granted critical national infrastructure status

  The global IT outage caused by CrowdStrike has shown why keeping datacentres secure and safe is critical to the UK

• September 11, 2024 11 Sep'24

  September Patch Tuesday: Update before 1 October

  Four critical remote code execution bugs in Windows and three critical elevated privileges vulnerabilities will keep admins busy

• September 11, 2024 11 Sep'24

  How Sonar is elevating code quality in the age of AI

  Sonar’s code quality platform helps developers maintain secure, high-quality code amid the rise of artificial intelligence-based coding assistants, now expanding into the Asian market

• September 10, 2024 10 Sep'24

  JFrog and GitHub unveil open source security integrations

  Secure software specialist JFrog is working with code development service GitHub to integrate the onboard capabilities of its Software Supply Chain Platform service into GitHub’s platform

• September 10, 2024 10 Sep'24

  ANZ CIOs to prioritise cyber security investments in 2025

  Cyber security remains high on the agenda for ANZ CIOs, followed by data analytics, cloud and generative AI

• September 05, 2024 05 Sep'24

  NCSC and allies call out Russia's Unit 29155 over cyber warfare

  The NCSC and counterpart agencies from the US and other countries have exposed a long-running campaign of Russian cyber espionage and warfare conducted by GRU Unit 29155

• September 05, 2024 05 Sep'24

  Fog ransomware crew evolving into wide-ranging threat

  The emergent Fog ransomware gang appears to be changing up its victimology in search of more cash-rich victims

• September 05, 2024 05 Sep'24

  Canadian arrested by France after cooperating with US on Sky ECC cryptophone investigation

  Thomas Herdman, who faces charges in France over his involvement in distributing Sky ECC encrypted phones, was arrested by French police despite agreeing to cooperate with US law enforcement

• September 04, 2024 04 Sep'24

  Retailers question using live facial recognition for shoplifting

  Retailers praise benefits of retrospective over live facial recognition in dealing with shoplifting, but stress there are ongoing concerns around the ethical, legal and safety implications of using the technology in stores

• September 04, 2024 04 Sep'24

  Fraud and scam complaints hit highest ever level in UK

  The Financial Ombudsman Service says it recorded almost 9,000 complaints about fraud and scams from April to June, the most ever recorded

• September 03, 2024 03 Sep'24

  Chief data officers highlight data integrity woes

  In a report from the company co-founded by web inventor Tim Berners-Lee, CDOs discuss the challenges of artificial intelligence and using increasing amounts of personal data

• September 03, 2024 03 Sep'24

  Transport for London hit by cyber attack

  London’s transport network provider TfL experiences cyber security incident, but reassures customers there is no impact on services

• August 29, 2024 29 Aug'24

  Met Police deploy LFR in Lewisham without community input

  The Met’s latest live facial recognition deployment in Catford has raised concerns over the lack of community engagement around the police force’s use of the controversial technology

• August 28, 2024 28 Aug'24

  Global cyber spend to rise 15% in 2025, pushed along by AI

  Security spending will increase at pace in 2025, with artificial intelligence, cloud and consultancy services all pushing outlay to new highs, according to Gartner

• August 28, 2024 28 Aug'24

  Cambridge Enterprise saves big with Keepit SaaS backup

  University innovation body avoids hardware spend and saves management time as it switches from tape to cloud-to-cloud backup, instant recovery and decades-long retention from Keepit

• August 28, 2024 28 Aug'24

  Telegram founder Pavel Durov questioned over cyber crime charges

  Billionaire founder of Telegram accused of failing to co-operate with law enforcement requests for lawful interception

• August 28, 2024 28 Aug'24

  How Kaspersky is driving growth in APAC

  Kaspersky is leveraging its threat intelligence capabilities and local market knowledge to navigate geopolitical tensions and expand its footprint across the Asia-Pacific region

• August 27, 2024 27 Aug'24

  Palo Alto Networks bets on ‘precision AI’

  Palo Alto Networks’ regional leader, Steven Scheurmann, explains how machine learning, neural networks and generative AI can help to prevent breaches in what it calls ‘precision AI’

• August 22, 2024 22 Aug'24

  New Qilin tactics a ‘bonus multiplier’ for ransomware chaos

  Sophos X-Ops caught the Qilin ransomware gang stealing credentials stored by victims' employees in Google Chrome, heralding further cyber attacks and breaches down the line.

• August 20, 2024 20 Aug'24

  ICO launches privacy notice tool for SMEs

  ICO tool designed to make it easier for small businesses and sole traders operating online to create bespoke data privacy notices for compliance purposes

• August 20, 2024 20 Aug'24

  Phishing links becoming bigger threat than email attachments

  Phishing techniques are evolving away from malicious email attachments, according to a report

• August 19, 2024 19 Aug'24

  Challenges of deploying PQC globally

  Quantum computers will eventually be powerful and reliable enough to crack strong encryption. PQC is the answer, but it could take years to deploy

• August 19, 2024 19 Aug'24

  Popular Microsoft apps for Mac at risk of code injection attacks

  Researchers at Cisco Talos turn up evidence suggesting that Microsoft apps running on the Apple macOS operating system are not as secure as they seem

• August 16, 2024 16 Aug'24

  New Relic CEO on APAC growth and future of observability

  New Relic CEO Ashan Willy talks up growth trajectory in APAC, the company’s long-term vision, and how going private has enabled it to make strategic investments

• August 16, 2024 16 Aug'24

  Campaigners criticise Starmer post-riot public surveillance plans

  A UK government programme to expand police facial recognition and information sharing after racist riots is attracting criticism from campaigners for exploiting the far-right unrest to generally crack down on protest and increase surveillance

• August 14, 2024 14 Aug'24

  Automated police tech contributes to UK structural racism problem

  Civil society groups say automated policing technologies are helping to fuel the disparities that people of colour face across the criminal justice sector, as part of wider warning about the UK’s lack of progress in dealing with systemic racism

• August 13, 2024 13 Aug'24

  NIST debuts three quantum-safe encryption algorithms

  NIST has launched the first three quantum-resistant encryption algorithms, and as the threat of quantum-enabled cyber attacks grows greater, organisations are encouraged to adopt them as soon as they can

• August 13, 2024 13 Aug'24

  Australia’s cyber security skills gap remains pressing issue

  Study reveals Australia’s critical shortage of cyber security professionals, escalating the risk of data breaches

• August 08, 2024 08 Aug'24

  Royal ransomware crew puts on a BlackSuit in rebrand

  The Royal ransomware gang is back, with a new name and refreshed capabilities, including an apparently unique ‘partial encryption’ gambit, according to CISA

• August 08, 2024 08 Aug'24

  US lawmakers seek to brand ransomware gangs as terrorists

  Proposals from legislators in Washington DC could shake up the global ransomware ecosystem and give law enforcement sweeping new powers

• August 08, 2024 08 Aug'24

  Ofcom issues online safety warning to firms in wake of UK riots

  Ofcom has issued a warning reminding social media firms of their upcoming online safety obligations, after misinformation about the Southport stabbings sparked racist riots throughout the UK

• August 07, 2024 07 Aug'24

  Microsoft and CrowdStrike hit back at Delta’s legal threats

  Microsoft and CrowdStrike have rejected claims by Delta Air Lines that it was left high and dry amid thousands of flight cancellations during July’s software outage, accusing the airline of ignoring their offers of help and running out-of-date IT ...

• August 06, 2024 06 Aug'24

  2024 seeing more CVEs than ever before, but few are weaponised

  The number of disclosed CVEs soared by 30% in the first seven-and-a-half months of the year, but a tiny fraction of these have been exploited by threat actors, a reminder of the importance of focused security strategies

• August 05, 2024 05 Aug'24

  World’s largest companies at near-universal risk of supply chain breach

  Data from SecurityScorecard once again focuses on the interconnected nature of business supply chains and the risk posed to operational resilience by unexpected IT problems and cyber threats

• August 02, 2024 02 Aug'24

  How CrowdStrike is leveraging AI to empower security teams

  CrowdStrike CTO Elia Zaitsev explains how the company’s multi-agent AI architecture can help to enhance analyst efficiency and tackle cyber security challenges

• August 01, 2024 01 Aug'24

  CrowdStrike shareholders sue, alleging false security claims

  A US pension fund is lining up a lawsuit against CrowdStrike, claiming the cyber company lied about the integrity of its systems, leading to failings that caused a worldwide IT outage

• August 01, 2024 01 Aug'24

  Banks, telcos call for more data sharing to fight fraud

  A Which?-led coalition of banks and telecoms operators is calling on the UK's new government to take the lead on enabling data sharing to help fight digital fraud