News

IT risk management

• September 10, 2020 10 Sep'20

  Datacentre firm Equinix investigating ransomware attack

  A number of internal systems at cloud and datacentre firm Equinix have been affected by a ransomware attack

• September 10, 2020 10 Sep'20

  Government launches £500k healthcare security plan

  A £500,000 funding pot from the government aims to help support small and mid-sized healthcare firms during the pandemic

• September 10, 2020 10 Sep'20

  Assange prosecution would put journalists around the world at risk

  Trevor Timm, co-founder of the Freedom of the Press Foundation, tells a court that if the US prosecutes WikiLeaks founder Julian Assange, every reporter who receives a secret document will be criminalised

• September 09, 2020 09 Sep'20

  Branch-based anti-fraud scheme to be expanded to online banking

  A successful branch-based anti-fraud scheme will be expanded by banks to include online and telephone banking

• September 09, 2020 09 Sep'20

  September’s Patch Tuesday heavy on RCE vulnerabilities

  Microsoft’s September update contains patches for 129 common vulnerabilities and exposures, including a high number of remote code execution issues

• September 09, 2020 09 Sep'20

  US conspiracy charges against WikiLeaks founder Julian Assange ‘politically motivated’

  US journalism historian and investigative journalist Mark Feldstein tells a UK court that use of the Espionage Act against Assange will have wide implications for the press

• September 07, 2020 07 Sep'20

  Government DPOs challenged by volume of GDPR work

  Data protection officers working across the UK government are finding it tough to keep up with the increased workload generated by GDPR, according to a report

• September 06, 2020 06 Sep'20

  Why predictive threat intelligence is key

  Threat intelligence startup Cyfirma is using virtual agents to gather intelligence on potential cyber attacks that are being coordinated in underground forums before they occur

• September 03, 2020 03 Sep'20

  UK businesses hardest hit financially by fallout from cyber attacks, research shows

  Latest edition of Hiscox’s annual cyber readiness report suggests UK businesses are among those worst affected by the financial fallout from cyber attacks

• September 02, 2020 02 Sep'20

  Northumbria University suffers major disruption after cyber attack

  Some exams cancelled as university appoints external specialists to investigate incident

• September 01, 2020 01 Sep'20

  Norway’s corporates want government to support ‘herd immunity’ to cyber attack

  Leading business organisations in Norway call on government to play a more active role in improving and coordinating the country’s cyber defences

• August 28, 2020 28 Aug'20

  New Zealand activates security services as DDoS outage enters fourth day

  New Zealand government calls in its national cyber security agencies to help investigate a continuing cyber attack on the country’s financial systems

• August 28, 2020 28 Aug'20

  Machine learning wards off threats at TV studio Bunim Murray

  TV studio behind reality hits including The Real World and Keeping Up With The Kardashians turned to Darktrace’s Antigena email protection service to keep its people safe from Covid-19 threats

• August 28, 2020 28 Aug'20

  Benefit fraud: Underground trade in stolen identities revealed

  A roaring underground trade in stolen identities is undermining the Universal Credit system and could potentially defraud it out of millions of pounds

• August 27, 2020 27 Aug'20

  DDoS downs New Zealand stock exchange for third day

  Distributed denial of service attack from overseas has left stock exchange offline for days

• August 27, 2020 27 Aug'20

  TikTok CEO clocks off

  TikTok CEO Kevin Mayer has resigned from the firm after just three months

• August 26, 2020 26 Aug'20

  Avaddon ransomware operators having a go at double extortion

  The operators of the Avaddon ransomware seem to be tooling up to leak the data of their victims in addition to holding it to ransom, Cofense researchers confirm

• August 25, 2020 25 Aug'20

  North Korea’s Lazarus targets cryptocurrency vertical

  APT group behind the infamous WannaCry incident is targeting cryptocurrency operators, according to new research

• August 25, 2020 25 Aug'20

  TikTok takes Trump to court

  Under-fire video app TikTok files a formal complaint in the federal courts challenging the Trump administration’s attempt to ban it in the US

• August 21, 2020 21 Aug'20

  MPs accuse ICO of failing to do its job on contact-tracing data

  Cross-party group of MPs say the ICO has failed to enforce data protection standards or hold the government to account over the unlawful Test and Trace programme

• August 21, 2020 21 Aug'20

  Australian regulator sues RI Advice for cyber security lapses

  The Australian Securities and Investments Commission is suing RI Advice for cyber security breaches at the financial firm’s authorised representatives

• August 20, 2020 20 Aug'20

  UKAS rejects ISO certification concerns

  UK’s certification body says refreshed guidance is in place to cover the possibility of lapsed ISO certifications

• August 20, 2020 20 Aug'20

  Social media data leak highlights murky world of data scraping

  A data brokerage left its database of 235 million Instagram, TikTok and YouTube profiles exposed to anybody who cared to access it

• August 19, 2020 19 Aug'20

  HMRC investigates over 10,000 Covid-19 phishing reports

  HM Revenue & Customs received thousands of reports of coronavirus phishing scams exploiting its name during April, May and June

• August 19, 2020 19 Aug'20

  Coronavirus: Thousands of ISO certifications set to lapse

  Delays and postponements in the auditing process are putting hard-earned security and data protection certifications at risk of lapsing

• August 17, 2020 17 Aug'20

  The Security Interviews: How Crest is remaking the future of consultancy

  Crest president Ian Glover taught himself cyber security while working on government computing systems in the 1970s and 1980s. Now he is on a decade-spanning mission to change security consultancy models

• August 14, 2020 14 Aug'20

  Russia’s Fancy Bear targets Linux environments with Drovorub malware

  The Russian intelligence-linked Fancy Bear group is deploying a new malware called Drovorub against Linux environments as part of a cyber espionage operation, according to US warnings

• August 14, 2020 14 Aug'20

  Executive interview: Sri Shivananda, chief technology officer, PayPal

  Computer Weekly talks to PayPal’s tech head about the payment provider’s SOA, security, open source and the lockdown

• August 13, 2020 13 Aug'20

  APAC consumers do not feel responsible for data security

  Just one in four consumers believe they should protect their own data, underscoring the tightrope between security and convenience that organisations have been walking on

• August 12, 2020 12 Aug'20

  EU and US start discussions on ‘enhanced’ Privacy Shield data-sharing agreement

  Talks begin on a successor to the Privacy Shield EU-US data-sharing agreement declared unlawful in July 2020 – a decision by the European Court of Justice that left thousands of businesses facing legal uncertainty

• August 12, 2020 12 Aug'20

  How Dharma ransomware became an effective services business

  New research looks under the bonnet of a Dharma ransomware attack, with the ransomware's ease of use being particularly dangerous for small to medium-sized enterprises

• August 12, 2020 12 Aug'20

  Microsoft patches two zero-days with active exploits

  Microsoft drops another major Patch Tuesday update, including fixes for two zero-day exploits that are already being exploited by cyber criminals

• August 11, 2020 11 Aug'20

  NHS hit by thousands of malicious emails at height of pandemic

  The NHS received nearly 30,000 malicious emails at the height of the Covid-19 pandemic in March and April

• August 11, 2020 11 Aug'20

  Citrix users urged to patch five XenMobile CVEs

  Patches are available for CVEs 2020-8208 through 8212 and should be installed as soon as possible

• August 11, 2020 11 Aug'20

  Coronavirus: Phishing lures pivot to exploit vaccine hopes

  Phishing emails are increasingly luring in victims with subject lines relating to the development of a vaccine for Covid-19

• August 11, 2020 11 Aug'20

  French data protection authorities to probe TikTok as suitors circle

  France’s CNIL has confirmed a new investigation into TikTok’s data protection practices

• August 11, 2020 11 Aug'20

  Hospitality sector is failing on contact-tracing obligations

  Cyber security experts urge the government to do more to help small hospitality businesses improve their contact-tracing data-handling practices

• August 10, 2020 10 Aug'20

  Retailer Monsoon allegedly exposing data via Pulse Connect server

  A researcher has found a critically insecure Pulse Connect Secure VPN version belonging to UK retailer Monsoon Accessorize, but claims the firm is ignoring his disclosures

• August 10, 2020 10 Aug'20

  Security teams struggle to keep pace with cloud threats

  Security professionals face challenges in keeping pace with cloud deployments and migrations, and the additional security threats they open up

• August 07, 2020 07 Aug'20

  Virgin Media customers targeted in Twitter phish

  Customers seeking help from the ISP are being targeted by a scam Twitter account

• August 07, 2020 07 Aug'20

  TikTok to be banned in US in 45 days

  Trump says his Executive Orders against Chinese mobile apps are in the interests of dealing with a national emergency

• August 06, 2020 06 Aug'20

  Australia updates cyber security strategy but offers little new

  The nation’s latest cyber security strategy includes centralised management of networks and a voluntary code of practice for deploying internet-connected devices, among other areas

• August 06, 2020 06 Aug'20

  Qualcomm chip vulnerability puts millions of phones at risk

  Qualcomm has patched multiple vulnerabilities in its chip hardware that left hundreds of millions of smartphones open to compromise by malicious actors

• August 06, 2020 06 Aug'20

  GCHQ seeks researchers to tackle deep fakes and misinformation

  A GCHQ research fellowship based at its Manchester office will explore various national security priorities such as deep fakes, fake news and the impact of AI

• August 05, 2020 05 Aug'20

  Seven questions you need to ask when buying security insurance

  Find out what you need to ask to make an informed decision on cyber security insurance with new help from the UK’s NCSC

• August 05, 2020 05 Aug'20

  Second wave of Covid-19 cyber attacks locked in

  More cyber attacks exploiting the pandemic seem likely, says Interpol

• August 04, 2020 04 Aug'20

  Five signs you’re about to get hit with ransomware

  A series of Sophos reports on the ransomware threat landscape shows how security professionals can sniff out a potential ransomware attack before it happens

• August 04, 2020 04 Aug'20

  Liam Fox hack raises questions over government security

  The hack of a former cabinet minister’s emails casts doubt over the effectiveness of safeguards and security training processes at the highest levels of the British government

• August 04, 2020 04 Aug'20

  New foundation to bolster security of open source software

  The Open Source Security Foundation will bring together key open source security initiatives across the industry to improve and support the security of open source software

• August 03, 2020 03 Aug'20

  Estonian police and border services need better IT to block criminals from becoming e-residents

  Police and Border Guard Board of Estonia needs to improve its IT systems to stop criminals from becoming e-residents, says report