News

IT risk management

• November 18, 2020 18 Nov'20

  US cyber security chief fired for contradicting Trump

  CISA chief Chris Krebs ousted for doing his job fighting disinformation in an apparent purge of officials deemed disloyal to president Donald Trump

• November 18, 2020 18 Nov'20

  How Aarogya Setu is addressing scale and security challenges

  India’s contact-tracing platform leverages microservices, encryption techniques and cloud-based visibility tools to address scale and security requirements

• November 17, 2020 17 Nov'20

  Kaspersky shuts down data-processing activities in Russia

  Cyber security provider’s data storage and processing activities for customers in Europe, the US and Canada, have now been fully relocated to Switzerland

• November 17, 2020 17 Nov'20

  HMRC warns over uptick in Self Assessment tax scams

  HMRC issues updated warnings as 2021 Self Assessment deadlines loom

• November 17, 2020 17 Nov'20

  Financial services data volumes heighten risk of insider breach

  Financial services organisations hold so much data that it is becoming virtually impossible to safeguard properly against data breaches caused by malicious or careless employees

• November 16, 2020 16 Nov'20

  How Standard Chartered approaches cyber security

  Bank uses security-by-design principles and conducts red-teaming exercises among other measures to fend off cyber breaches

• November 13, 2020 13 Nov'20

  Ticketmaster fined £1.25m by ICO for failing to protect customer data

  Ticket website’s customer data was exposed through an attack on a third-party chatbot

• November 12, 2020 12 Nov'20

  IT Priorities 2020: Budgets rejigged to support 2021 recovery

  IT has been essential in helping organisations remain operational. IT chiefs are now considering the IT to drive a sustained business recovery

• November 12, 2020 12 Nov'20

  Company accused of spying on Assange acted for Ecuadorian Intelligence, says ex UC Global manager

  Former operations chief of UC Global told Spanish Court the company accused of spying on Assange at the Ecuadorian Embassy in London was acting on the orders of Ecuadorian Intelligence

• November 11, 2020 11 Nov'20

  Security pros coped admirably with remote working transition

  Despite facing tight timescales at the onset of the pandemic, security professionals have come through the transition to remote working remarkably well, according to a report

• November 11, 2020 11 Nov'20

  Microsoft drops fix for serious zero-day among 112 Patch Tuesday updates

  November’s Patch Tuesday contains fixes for 112 bugs, including a potentially serious zero-day exploit that malicious actors are already taking advantage of

• November 11, 2020 11 Nov'20

  EU aid funds used to train ‘unaccountable intelligence agencies’ in high-tech surveillance

  Hundreds of documents obtained by campaign group Privacy International show how the EU is supporting surveillance programmes in the Balkans, the Middle East and Africa

• November 10, 2020 10 Nov'20

  Intel and AMD processors affected by another side-channel exploit

  Two years after Spectre and Meltdown, the x86 processor faces another side-channel exploit – only this time, it is based on sensing temperature

• November 10, 2020 10 Nov'20

  Leaky AWS S3 bucket once again at centre of data breach

  Prestige Software exposed millions of records after failing to pay attention to the security of its cloud instances

• November 10, 2020 10 Nov'20

  IT Priorities 2020: After Covid-19, security goes back to basics

  This year’s transition to remote working highlighted big gaps in the fundamentals of security, as updated TechTarget/Computer Weekly data reveals

• November 09, 2020 09 Nov'20

  EU moves closer to encryption ban after Austria, France attacks

  Draft resolution document setting up an EU-wide ban on end-to-end encryption is set to be waved through this week

• November 06, 2020 06 Nov'20

  NHS warned over Ryuk spreading through Trickbot replacements

  NHS Digital tells healthcare organisations to be mindful of a marked rise in usage of the Bazar and Buer loaders

• November 06, 2020 06 Nov'20

  ICO sued over ‘failure’ to address ad industry practices

  Privacy campaigner the Open Rights Group claims the advertising technology industry is systematically breaching the GDPR, and the ICO is doing nothing about it

• November 05, 2020 05 Nov'20

  Consumer rights organisation warns of computer takeover scams

  Consumers warned to be on guard against criminals pretending to be IT support staff to gain access to personal banking information

• November 05, 2020 05 Nov'20

  Singapore government rolls out digital signature service

  Individuals and businesses will soon be able to sign documents digitally using a new service on the Singapore government’s SingPass digital identity platform

• November 04, 2020 04 Nov'20

  India and Japan report stronger concern over cyber threats

  Security operations teams in the two Asian giants see the increased volume of cyber threats as their biggest challenge amid the Covid-19 pandemic

• November 02, 2020 02 Nov'20

  NHS weathers cyber crime storm during pandemic, says NCSC

  The NCSC dealt with over 700 incidents in the 12 months to August 2020, with over 200 specifically related to Covid-19, and the NHS a critical area of focus

• November 02, 2020 02 Nov'20

  Maze ransomware shuts down with bizarre announcement

  The operators of Maze announce they are shutting down, and claim their crime spree was merely intended to demonstrate lax security at their targets

• October 30, 2020 30 Oct'20

  Accidental heroes: How one scaleup pivoted to cyber

  Simeon Quarrie designed his business using virtual reality and interactivity as a tool to tell stories that effect cultural change in enterprise environments – then a cyber criminal emptied his bank account

• October 30, 2020 30 Oct'20

  CISOs more confident in identity practice after pandemic shock

  Identity practice and management has become a critical element of cyber security strategies to support remote workers

• October 29, 2020 29 Oct'20

  Zero-trust investment seen accelerating through pandemic

  New analyst report details some of the main indicators for success in zero-trust implementation

• October 28, 2020 28 Oct'20

  Barracuda eyes Indochina markets

  Barracuda is looking to expand its local presence and headcount in fast-growing emerging markets of Vietnam, Cambodia and Laos

• October 27, 2020 27 Oct'20

  APAC CISOs warm up to zero trust

  Security leaders in Asia-Pacific are adopting zero-trust security, but challenges stand in their way of reaping the full potential of the security model

• October 26, 2020 26 Oct'20

  Highly unusual hacking attack directly threatens therapy patients

  A hacker has directly contacted therapy patients to say their highly personal therapy notes will be put on the internet unless they pay the ransom

• October 26, 2020 26 Oct'20

  Cooperation between Norway’s security agencies planned following cyber attack on parliament

  Government seeks to develop enhanced national IT infrastructure with an embedded early warning system and defence shield to protect the IT systems of public and private organisations

• October 23, 2020 23 Oct'20

  Cyber attack on Hackney Council is ‘morally repugnant’, says mayor

  Mayor of Hackney is ‘incredibly angry’ at the cyber criminals behind the attack, which will continue to disrupt key council services for some time

• October 22, 2020 22 Oct'20

  SonicWall patches 11 firewall vulnerabilities

  SonicWall users are advised to download updates that fix 11 CVEs in the SonicOS operating system, uncovered by Positive Technologies

• October 22, 2020 22 Oct'20

  Protecting remote workers an opportunity to do security better

  Securing the fully remote workforce has been a challenge for IT teams, but it presents an opportunity to commit to a higher standard of cyber security, according to a Cisco report

• October 21, 2020 21 Oct'20

  NSA’s top CVE list a timely reminder to patch

  Many of the CVEs detailed on the NSA’s top 25 chart are golden oldies

• October 21, 2020 21 Oct'20

  Charities warned over ‘Robin Hood’ cyber criminals

  Accepting donations from cyber criminal groups could be deemed as profiting from crime, money laundering or handling stolen goods – so don’t do it

• October 21, 2020 21 Oct'20

  Financial services staff want work-from-home policies to continue after Covid

  About half of workers in the finance sector want their employers to retain remote working policies brought in during the pandemic

• October 21, 2020 21 Oct'20

  Customer loyalty accounts in danger from cyber criminals

  Billions of credential stuffing attacks are harvesting valuable customer data for the dark web economy

• October 21, 2020 21 Oct'20

  Retailers get access to new security toolkit

  The British Retail Consortium has worked with the NCSC to develop a new cyber security toolkit pitched at retailers

• October 20, 2020 20 Oct'20

  Resilient Trickbot down but not yet knocked out

  Global, Microsoft-led effort to disrupt the Trickbot botnet has seen some success, but new command and control servers continue to pop up

• October 20, 2020 20 Oct'20

  BA breach penalty sets new GDPR precedents

  The 90% reduction in the fine levied on BA over a 2018 data breach has legal experts talking about the ramifications for the future of data protection

• October 15, 2020 15 Oct'20

  Cloud data protection keeps the Crick’s medical research Covid-secure

  Cloud data management services from Rubrik gave the Francis Crick Institute a data protection edge and have helped keep its vital work going through the pandemic

• October 15, 2020 15 Oct'20

  Hackney services still offline in ongoing cyber attack

  Services remain disrupted two days after council was hit by a serious incident, as residents are warned to be on their guard

• October 14, 2020 14 Oct'20

  Public sector security failings leave UK at risk, says think tank

  Reform report urges adoption of new policies in the next version of the UK’s National Cyber Security Strategy

• October 14, 2020 14 Oct'20

  US Elections: Malicious internet domains spike as campaigns heat up

  Internet domains related to the US presidential election are 56% more likely to be malicious than regular ones

• October 14, 2020 14 Oct'20

  Fintech ‘unicorn’ Klarna probed over data misuse

  Online bank blames misuse of user data on human error as Information Commissioner’s Office weighs in

• October 14, 2020 14 Oct'20

  Microsoft fixes 87 bugs in October 2020 Patch Tuesday

  Smaller October Patch Tuesday update includes fixes for critical bugs in Windows 10 and Windows Server 2019

• October 13, 2020 13 Oct'20

  Suppliers neglecting virtual appliance security, putting users at risk

  Software suppliers are often distributing their products on virtual appliances that contain known vulnerabilities or are running outdated or unsupported operating systems, according to a report

• October 12, 2020 12 Oct'20

  Trickbot forced offline in major cyber security victory

  Coalition led by Microsoft obtained a court order enabling them to take down the infamous Trickbot botnet’s back-end server infrastructure

• October 12, 2020 12 Oct'20

  Five Eyes spy group again demands access to private messages

  Spooks are once again calling for the tech industry to break end-to-end encryption in messaging platforms

• October 12, 2020 12 Oct'20

  Making sense of zero-trust security

  Implementing zero-trust security is not an easy feat, but enterprises can still get it right if they approach it from a process perspective and get a handle on their infrastructure footprint