News
IT risk management
-
November 04, 2020
04
Nov'20
India and Japan report stronger concern over cyber threats
Security operations teams in the two Asian giants see the increased volume of cyber threats as their biggest challenge amid the Covid-19 pandemic
-
November 02, 2020
02
Nov'20
NHS weathers cyber crime storm during pandemic, says NCSC
The NCSC dealt with over 700 incidents in the 12 months to August 2020, with over 200 specifically related to Covid-19, and the NHS a critical area of focus
-
November 02, 2020
02
Nov'20
Maze ransomware shuts down with bizarre announcement
The operators of Maze announce they are shutting down, and claim their crime spree was merely intended to demonstrate lax security at their targets
-
October 30, 2020
30
Oct'20
Accidental heroes: How one scaleup pivoted to cyber
Simeon Quarrie designed his business using virtual reality and interactivity as a tool to tell stories that effect cultural change in enterprise environments – then a cyber criminal emptied his bank account
-
October 30, 2020
30
Oct'20
CISOs more confident in identity practice after pandemic shock
Identity practice and management has become a critical element of cyber security strategies to support remote workers
-
October 29, 2020
29
Oct'20
Zero-trust investment seen accelerating through pandemic
New analyst report details some of the main indicators for success in zero-trust implementation
-
October 28, 2020
28
Oct'20
Barracuda eyes Indochina markets
Barracuda is looking to expand its local presence and headcount in fast-growing emerging markets of Vietnam, Cambodia and Laos
-
October 27, 2020
27
Oct'20
APAC CISOs warm up to zero trust
Security leaders in Asia-Pacific are adopting zero-trust security, but challenges stand in their way of reaping the full potential of the security model
-
October 26, 2020
26
Oct'20
Highly unusual hacking attack directly threatens therapy patients
A hacker has directly contacted therapy patients to say their highly personal therapy notes will be put on the internet unless they pay the ransom
-
October 26, 2020
26
Oct'20
Cooperation between Norway’s security agencies planned following cyber attack on parliament
Government seeks to develop enhanced national IT infrastructure with an embedded early warning system and defence shield to protect the IT systems of public and private organisations
-
October 23, 2020
23
Oct'20
Cyber attack on Hackney Council is ‘morally repugnant’, says mayor
Mayor of Hackney is ‘incredibly angry’ at the cyber criminals behind the attack, which will continue to disrupt key council services for some time
-
October 22, 2020
22
Oct'20
SonicWall patches 11 firewall vulnerabilities
SonicWall users are advised to download updates that fix 11 CVEs in the SonicOS operating system, uncovered by Positive Technologies
-
October 22, 2020
22
Oct'20
Protecting remote workers an opportunity to do security better
Securing the fully remote workforce has been a challenge for IT teams, but it presents an opportunity to commit to a higher standard of cyber security, according to a Cisco report
-
October 21, 2020
21
Oct'20
NSA’s top CVE list a timely reminder to patch
Many of the CVEs detailed on the NSA’s top 25 chart are golden oldies
-
October 21, 2020
21
Oct'20
Charities warned over ‘Robin Hood’ cyber criminals
Accepting donations from cyber criminal groups could be deemed as profiting from crime, money laundering or handling stolen goods – so don’t do it
-
October 21, 2020
21
Oct'20
Financial services staff want work-from-home policies to continue after Covid
About half of workers in the finance sector want their employers to retain remote working policies brought in during the pandemic
-
October 21, 2020
21
Oct'20
Customer loyalty accounts in danger from cyber criminals
Billions of credential stuffing attacks are harvesting valuable customer data for the dark web economy
-
October 21, 2020
21
Oct'20
Retailers get access to new security toolkit
The British Retail Consortium has worked with the NCSC to develop a new cyber security toolkit pitched at retailers
-
October 20, 2020
20
Oct'20
Resilient Trickbot down but not yet knocked out
Global, Microsoft-led effort to disrupt the Trickbot botnet has seen some success, but new command and control servers continue to pop up
-
October 20, 2020
20
Oct'20
BA breach penalty sets new GDPR precedents
The 90% reduction in the fine levied on BA over a 2018 data breach has legal experts talking about the ramifications for the future of data protection
-
October 15, 2020
15
Oct'20
Cloud data protection keeps the Crick’s medical research Covid-secure
Cloud data management services from Rubrik gave the Francis Crick Institute a data protection edge and have helped keep its vital work going through the pandemic
-
October 15, 2020
15
Oct'20
Hackney services still offline in ongoing cyber attack
Services remain disrupted two days after council was hit by a serious incident, as residents are warned to be on their guard
-
October 14, 2020
14
Oct'20
Public sector security failings leave UK at risk, says think tank
Reform report urges adoption of new policies in the next version of the UK’s National Cyber Security Strategy
-
October 14, 2020
14
Oct'20
US Elections: Malicious internet domains spike as campaigns heat up
Internet domains related to the US presidential election are 56% more likely to be malicious than regular ones
-
October 14, 2020
14
Oct'20
Fintech ‘unicorn’ Klarna probed over data misuse
Online bank blames misuse of user data on human error as Information Commissioner’s Office weighs in
-
October 14, 2020
14
Oct'20
Microsoft fixes 87 bugs in October 2020 Patch Tuesday
Smaller October Patch Tuesday update includes fixes for critical bugs in Windows 10 and Windows Server 2019
-
October 13, 2020
13
Oct'20
Suppliers neglecting virtual appliance security, putting users at risk
Software suppliers are often distributing their products on virtual appliances that contain known vulnerabilities or are running outdated or unsupported operating systems, according to a report
-
October 12, 2020
12
Oct'20
Trickbot forced offline in major cyber security victory
Coalition led by Microsoft obtained a court order enabling them to take down the infamous Trickbot botnet’s back-end server infrastructure
-
October 12, 2020
12
Oct'20
Five Eyes spy group again demands access to private messages
Spooks are once again calling for the tech industry to break end-to-end encryption in messaging platforms
-
October 12, 2020
12
Oct'20
Making sense of zero-trust security
Implementing zero-trust security is not an easy feat, but enterprises can still get it right if they approach it from a process perspective and get a handle on their infrastructure footprint
-
October 08, 2020
08
Oct'20
NCSC relaunches SME security guide with home working focus
The NCSC is issuing an updated version of its guide to security for SMEs, reflecting the long-lasting changes to the world of work seen in 2020
-
October 08, 2020
08
Oct'20
Emotet rated September’s ‘most popular’ malware
The current resurgence of Emotet is attracting attention as governments issue new warnings and cyber criminals rush to exploit the chaotic US election
-
October 08, 2020
08
Oct'20
Crown Prosecution Service suffers 1,600 data breaches in 12 months
CPS sees a spike in data security incidents, many of them serious enough to be reported to the Information Commissioner’s Office
-
October 08, 2020
08
Oct'20
Threat of GDPR fines increasingly driving security buying decisions
Scaring the people who hold the purse strings may be the best option for CISOs who need a little extra budget
-
October 07, 2020
07
Oct'20
5G regulation failures are a threat to UK’s national security
Defence Committee report on the security of 5G brands existing regulations outdated and unsatisfactory
-
October 07, 2020
07
Oct'20
Department for Education failed to protect data on millions of children, says ICO
The Department for Education’s National Pupil Database, which contains millions of items of data on the UK’s schoolchildren, was found to be non-compliant with data protection regulations across the board
-
October 07, 2020
07
Oct'20
UK accounts for 45% of Europe’s card fraud as criminals target online transactions
Payment card fraudsters steal €1.5bn, with card-not-present attacks accounting for three-quarters of this sum
-
October 07, 2020
07
Oct'20
Southeast Asia remains hotspot for cyber attacks
Geopolitics and Covid-19 have been fodder for cyber criminals to advance their motives in Southeast Asia in 2020
-
October 06, 2020
06
Oct'20
EU’s top court questions legality of UK phone and internet data surveillance
European Court of Justice rules that the UK and EU member states must comply with EU privacy laws when harvesting people’s sensitive communications data from telecoms and internet companies
-
October 06, 2020
06
Oct'20
Ransomware attacks go through the roof
The volume of ransomware attacks has jumped 50% in the past three months, according to data produced at Check Point
-
October 06, 2020
06
Oct'20
CISOs struggle to keep up with MITRE ATT&CK framework
Despite its proven benefits for security, the MITRE ATT&CK framework is proving difficult for many, according to a joint study from McAfee and UC Berkeley
-
October 05, 2020
05
Oct'20
Fake news tops list of online concerns worldwide
Receiving false information is a greater worry than other online risks such as cyber bullying and fraud, says the Lloyd’s Register Foundation
-
October 05, 2020
05
Oct'20
HMRC warns locked-down freshers of ‘wave’ of tax scams
New university intake may be being targeted by cyber criminals amid Covid-19 confusion
-
October 05, 2020
05
Oct'20
FBI seized ‘legally privileged’ material from Ecuador Embassy, claims Julian Assange’s lawyer
The US struck a secret deal with Ecuador to seize WikiLeaks founder Julian Assange’s property from the Ecuadorian Embassy in London days before his arrest. The haul included legally privileged documents, says his solicitor
-
October 02, 2020
02
Oct'20
WikiLeaks led the way for newsrooms to use encryption to protect sources, says Italian journalist
Stefania Maurizi says in written evidence that Julian Assange pioneered the use of encryption by journalists to protect sources. Her work shows that the US put pressure on Italy to stop the extradition and prosecution of CIA officers responsible for...
-
October 02, 2020
02
Oct'20
Honesty is the best policy: Forging a security culture in the NHS
Clinician and technologist Sam Shah helped set up NHSX in 2019. Now he’s helping advance digital transformation in healthcare from the outside, and a big part of that is addressing security in the sector
-
October 02, 2020
02
Oct'20
Security pros face sanctions if they help ransomware victims pay
New advisory from the US government warns cyber insurance and incident response specialists that they could be skating on thin ice if they help ransomware victims pay their attackers off
-
October 02, 2020
02
Oct'20
Find and fix your Adobe Flash dependencies, says NCSC
As Adobe’s Flash Player approaches end-of-life, the National Cyber Security Centre is urging organisations to fix their Flash dependencies
-
October 01, 2020
01
Oct'20
Judge to give verdict on Julian Assange’s extradition after Christmas
Judge Vanessa Baraitser said today that she would make a ruling in early January on whether WikiLeaks founder Julian Assange should be extradited to the US
-
September 30, 2020
30
Sep'20
GitHub makes code vulnerability scanning feature public
Code-scanning service is now out of beta and generally available, helping teams to bake security into their code at the development stage