News

IT risk management

April 06, 2020 06 Apr'20
Two-factor authentication is broken: What comes next?

Two-factor authentication is seen by many as a robust authentication method, but is it really as impervious as it seems?
April 06, 2020 06 Apr'20
BA and Marriott get GDPR fine reprieve

Both British Airways and Marriott International have had their General Data Protection Regulation fines deferred until later in 2020
April 06, 2020 06 Apr'20
Zero-day exploits increasingly commodified, say researchers

The exploitation of zero-day vulnerabilities increasingly demonstrates access to cash, rather than skills
April 05, 2020 05 Apr'20
Interpol warns of more ransomware attacks against healthcare sector

Purple notice issued to alert police forces around the world of ransomware attacks against hospitals and other healthcare institutions

April 05, 2020 05 Apr'20
Google data shows high interest in security and remote working

An analysis of the most Googled technology terms during the Covid-19 coronavirus pandemic has highlighted the scale of the cyber security challenge presented by the crisis
April 02, 2020 02 Apr'20
Coronavirus: Magecart attacks on online retailers jump 20%

RiskIQ researchers have observed a sharp uptick in Magecart credit card attacks, driven by increased traffic to online retailers during the coronavirus pandemic
April 02, 2020 02 Apr'20
Morrisons appeal success is cold comfort for enterprises

The success of Morrisons’ appeal against judgments that it should be held vicariously liable for an insider data breach will be welcomed by businesses, but may be of limited comfort to them
April 02, 2020 02 Apr'20
Coronavirus: Is Zoom safe and should security teams ban it?

Zoom’s rapid rise to prominence has highlighted a score of security problems with the service. Should CISOs try to steer their organisations away from it, or ban it outright?
April 01, 2020 01 Apr'20
What we can learn from Marriott’s new data breach embarrassment

Marriott International has egg on its face once again following a second data breach in as many years, but there are encouraging signs in its response that suggest it is at least trying to learn from its experiences
April 01, 2020 01 Apr'20
Morrisons not liable for 2014 data breach, says Supreme Court

Court allows supermarket chain’s appeal against judgments holding it liable for a 2014 insider data breach, saying previous rulings misunderstood the concept of vicarious liability

April 01, 2020 01 Apr'20
Coronavirus: WHO, Rakuten collaborate on anti-disinformation chatbot

The World Health Organisation and Rakuten Viber have built an interactive, multi-language chatbot to try to get on top of the growing problem of disinformation during the coronavirus pandemic
March 31, 2020 31 Mar'20
Nigerian email attacks evolving into credible, dangerous threat

Palo Alto’s Unit 42 reports on Nigeria’s SilverTerrier cyber crime group, which is becoming a highly dangerous threat to businesses worldwide
March 31, 2020 31 Mar'20
Too late to protect online privacy, say Brits

Most UK consumers are concerned about data privacy, but think it’s too late to do much about it, according to a report
March 30, 2020 30 Mar'20
Coronavirus: Don’t fall for fake cures, warns UK government

Government urges people to be more vigilant about what they read and share online as it relaunches its Don’t Feed the Beast campaign to counter coronavirus disinformation
March 27, 2020 27 Mar'20
Lorca calls on security scaleups to tackle coronavirus challenge

Lorca innovation programme has launched an open call for its next cohort of cyber security scaleups, with a timely focus on coronavirus challenges
March 26, 2020 26 Mar'20
Coronavirus: What are the latest free cyber security offers?

We round up the latest free offers on cyber security products and services being made available during the Covid-19 coronavirus crisis
March 26, 2020 26 Mar'20
Coronavirus: Be alert to rogue mobile apps exploiting outbreak

Well-meaning developers are beginning to offer medical apps to monitor coronavirus symptoms and provide information on the pandemic. Opportunists and cyber criminals are not far behind them
March 26, 2020 26 Mar'20
Developed APAC states most exposed to cyber risks

Singapore, South Korea, Japan, Australia and New Zealand have the highest exposure to cyber risks, but they are also the most prepared to deal with cyber attacks, study finds
March 25, 2020 25 Mar'20
Almost half of UK businesses suffered a cyber attack in past year

Latest government statistics reveal the scale of the cyber security challenge facing UK plc, but reveals some cause for optimism
March 24, 2020 24 Mar'20
Fake antivirus site promises coronavirus protection, delivers trojan

Researchers at Malwarebytes have warned of an increasing volume of scam sites exploiting the Covid-19 coronavirus
March 24, 2020 24 Mar'20
Legacy AV defenceless against onslaught of evasive malware

More than two-thirds of malware detected by WatchGuard in the last three months of 2019 was able to evade signature-based antivirus products, rendering them effectively useless in most instances
March 23, 2020 23 Mar'20
Coronavirus: Kaspersky, Bitdefender make products free to NHS

Kaspersky and Bitdefender have both made various products and services available free to healthcare customers as the Covid-19 coronavirus pandemic intensifies
March 23, 2020 23 Mar'20
Thousands of Netflix, Disney+ streaming accounts being stolen

Proofpoint has urged users of streaming services to be alert to cyber criminals hijacking their accounts
March 22, 2020 22 Mar'20
Cyber gangsters hit UK medical firm poised for work on coronavirus with Maze ransomware attack

The Maze ransomware group has published personal and medical details of thousands of former patients of a London-based medical research company after a failed attempt to disable the firm's computer systems
March 20, 2020 20 Mar'20
Coronavirus: Sans Institute issues cyber security advice for parents

With schools now shut across the UK, parents will bear more responsibility for keeping children safe online and educating them about online harms
March 20, 2020 20 Mar'20
Unpatched Zyxel storage devices co-opted into IoT botnet

Owners of Zyxel network-attached storage devices are in danger of being hijacked by Mukashi, a descendant of the infamous Mirai botnet, if they don’t patch a critical vulnerability
March 19, 2020 19 Mar'20
IT Priorities 2020: ANZ firms to spend more on cyber security

Over half of respondents in Australia and New Zealand plan to invest more in cyber security, especially in key areas such as data loss prevention
March 18, 2020 18 Mar'20
Ocado pulls website amid coronavirus shopping frenzy

Ocado has closed its website and will not take any new orders for several days thanks to sheer volume of traffic
March 18, 2020 18 Mar'20
Coronavirus now possibly largest-ever cyber security threat

The cumulative volume of coronavirus-related email lures and other threats is the largest collection of attack types exploiting a single theme for years, possibly ever
March 18, 2020 18 Mar'20
Prudential turns to AI to secure computer networks against cyber attacks

Prudential, the UK’s largest listed insurer, is turning to artificial intelligence to protect its computer networks in the US, Asia and Africa from malware hackers and internal threats
March 18, 2020 18 Mar'20
Push for digitisation in Malaysia amid coronavirus crisis

Event cancellations and travel bans are spurring more companies to embrace digital tools to support remote and flexible working arrangements
March 17, 2020 17 Mar'20
Covid-19: NCSC issues secure remote working guidance

With hundreds of thousands likely to be working remotely for some time, the UK’s NCSC has issued best practice guidance to enable security teams to support them
March 17, 2020 17 Mar'20
Travelex under threat as insolvency risk, hacking costs and coronavirus take their toll

Foreign exchange group’s future remains uncertain as its parent company, Finablr, prepares for potential insolvency
March 17, 2020 17 Mar'20
SentinelOne makes security platform free to support remote workers

Endpoint protection platform service will be made free until 16 May 2020 to help protect remote workers during the Covid-19 coronavirus crisis
March 17, 2020 17 Mar'20
UK makes its case for post-Brexit data adequacy decision

Government sets out an explanatory framework as it seeks adequacy decisions from the European Commission to maintain the free flow of personal data between the European Union, the UK and Gibraltar
March 16, 2020 16 Mar'20
NCSC issues coronavirus cyber security alert

The UK’s National Cyber Security Centre has issued a public alert and fresh guidance as more cyber criminals get wise to the lucrative potential of Covid-19
March 13, 2020 13 Mar'20
Coronavirus-linked hacks likely as Czech hospital comes under attack

The world of cyber security is on high alert to heightened vulnerabilities as the spread of the Covid-19 coronavirus changes daily life across Europe
March 13, 2020 13 Mar'20
UK’s security sector failing on most diversity measures

A DCMS report on the state of the UK’s cyber security workforce highlights a huge lack of diversity and a substantial skills gap
March 12, 2020 12 Mar'20
Turla’s use of Iranian infrastructure probably opportunistic

Turla, the Kremlin-linked APT group that last year hijacked an Iranian group’s infrastructure, was likely to have been operating opportunistically, according to researchers
March 12, 2020 12 Mar'20
Security pros just want to be loved, report finds

Being valued by the business for their role in keeping the organisation safe and upholding ethical standards is a primary motivator for CISOs and other security professionals
March 12, 2020 12 Mar'20
Failings in open source disclosure put users at risk

As more projects rely on open source components, IT departments need to keep on top of critical vulnerabilities to ensure they are secure
March 12, 2020 12 Mar'20
APAC remains hotbed for digital transformation

Nearly half of organisations in the Asia-Pacific region see digital transformation as their top priority, followed by cloud infrastructure deployment and artificial intelligence, survey finds
March 11, 2020 11 Mar'20
Security pros test positive for Covid-19 after RSA Conference

Two employees of security firm Exabeam have been diagnosed with the Covid-19 coronavirus after attending RSA Conference 2020
March 11, 2020 11 Mar'20
Microsoft locks down new vulnerability with EternalBlue echoes

Microsoft has moved to get ahead of a serious remote code execution vulnerability in Microsoft Server Message Block 3.1.1, which was accidentally disclosed then missed in its March Patch Tuesday update
March 11, 2020 11 Mar'20
Microsoft fixes 26 critical vulnerabilities in another heavy Patch Tuesday

March’s Patch Tuesday is another big one for Microsoft, addressing 115 vulnerabilities, 26 of them critical
March 10, 2020 10 Mar'20
Schoolgirl security experts prepare to do battle

The finals of the CyberFirst Girls contest will take place on 16 March as the culmination of the NCSC’s annual competition to unearth future security talent
March 10, 2020 10 Mar'20
Hacking community targeted by cyber criminals in new trojan campaign

Cybereason’s Nocturnus threat research team has uncovered a cyber criminal campaign that weaponises popular hacking tools
March 09, 2020 09 Mar'20
Bill Gates backs Crest fintech security scheme for Africa and Asia

UK-based cyber security accreditation and certification non-profit Crest has been awarded a $1.4m grant from the Bill and Melinda Gates Foundation to expand cyber security capacity for fintechs in Africa and Asia
March 06, 2020 06 Mar'20
MI5 slammed by watchdog for failing to delete intercepted phone and internet data

The Investigatory Powers Commissioner (IPCO) has criticised MI5 for failing to report serious errors in the way it handles intercepted phone and internet data
March 06, 2020 06 Mar'20
Virgin Media confirms 'misconfigured database' left personal data of 900,000 people exposed

Telco provider Virgin Media confirms 'data incident' that left personal details of 900,000 people exposed, but denies its systems were hacked or that it suffered a data breach