News
IT risk management
-
March 29, 2019
29
Mar'19
Magento e-commerce sites urged to apply security update
Security experts are urging companies using the Magento e-commerce site to apply security updates without delay to avoid a disastrous hacking campaign
-
March 28, 2019
28
Mar'19
Infosec pros slam government-mandated backdoors
Government-mandated encryption backdoors increase vulnerability to nation-state attacks, according to the majority of cyber security professionals
-
March 28, 2019
28
Mar'19
Encryption adoption driven by new tech and compliance
The adoption of encryption is at its highest level yet, driven by the need to protect data generated by new digital initiatives, but still less than half of organisations are applying it consistently across the enterprise
-
March 27, 2019
27
Mar'19
UK IoT research centre to tackle cyber risk
A government-backed national IoT research centre has been launched as part of UK efforts to become a world leader in tackling cyber threats
-
March 27, 2019
27
Mar'19
Cyber attacks targeting industrial control systems on the rise
Malicious cyber activity increased to almost half of the industrial infrastructure protected by Kaspersky Lab in 2018, but the UK is among the most secure countries, the security firm reports
-
March 27, 2019
27
Mar'19
Norsk Hydro cyber attack cost estimates up to $41m
Initial estimates have put the financial impact of last week’s ransomware attack on the Norwegian aluminium producer of up to nearly $41m, raising questions about cyber insurance coverage
-
March 26, 2019
26
Mar'19
IT complexity raises concerns of certificate-related outages
Company executives are concerned that increased IT complexity will result in more security certificate-related outages, with nearly two-thirds of organisations affected in the past year
-
March 26, 2019
26
Mar'19
Asus releases fix for supply chain cyber attack
Asus has released a fix for a supply chain attack and downplayed the impact on customers while promising to contact all those affected as incident highlights code signing vulnerabilities
-
March 26, 2019
26
Mar'19
Nominet urges SMEs to register .uk domains to thwart squatters
The automatic right of .co.uk domain name holders to register the shorter .uk domains ends in June
-
March 26, 2019
26
Mar'19
Firms urged to gear up for new malware and tactics as threats proliferate
The volume of malware attacks reached a record level in 2018, with UK and India bucking global trend of increased ransomware attacks, a study shows
-
March 25, 2019
25
Mar'19
Security challenge is to move as fast as the business
Adapting security to the pace at which the business is moving is one of the biggest challenges facing infosec professionals in the cloud era, says Palo Alto Networks
-
March 22, 2019
22
Mar'19
Digital Darwinism unkind to those who wait, says Palo Alto
As business-driven digital transformation, including the move to cloud, continues apace, companies need to rethink their approach to how they deploy and consume security, or risk being left behind
-
March 22, 2019
22
Mar'19
Government cyber security strategy is ‘chaotic’
Responding to potential threats at a national level is unfeasible given the time ministers are currently dedicating to Brexit negotiations, says shadow Cabinet Office minister
-
March 20, 2019
20
Mar'19
Spike in cyber attacks targeting Cisco Webex
Cyber attacks targeting a leading web conference tool have increased dramatically and sextortion is becoming more popular with attackers, according to WatchGuard Technologies
-
March 20, 2019
20
Mar'19
Police investigate Norsk Hydro ransomware attack
Ransomware attack on one of the world’s largest aluminium producers is under police investigation
-
March 20, 2019
20
Mar'19
UK cyber experts to support global company boards
A consortium of UK cyber security experts and academics is to support multinational company boards to tackle online threats and protect against cyber crime
-
March 20, 2019
20
Mar'19
UK government organisations’ email security lagging
Email security in UK government organisations is lagging far behind that of central government, analysis reveals, with less than a third implementing standard protection
-
March 19, 2019
19
Mar'19
Norsk Hydro confirms ransomware attack
A Norwegian aluminium producer has confirmed a ransomware attack is affecting several areas of its business, forcing it to switch to manual operations
-
March 19, 2019
19
Mar'19
Firms urged to protect against spear phishing
Spear phishing attacks are sophisticated, targeted, costly and increasing in popularity among cyber attackers, a report warns
-
March 19, 2019
19
Mar'19
Norwegian aluminium producer hit by ‘extensive’ cyber attack
A Norwegian aluminium producer has disclosed that it has come under cyber attack affecting several areas of its business as the firm faces claims of environmental damage
-
March 15, 2019
15
Mar'19
Businesses failing to grasp DevSecOps
UK and US businesses are being exposed to security risks by a failure to integrate security into DevOps programmes, research shows
-
March 14, 2019
14
Mar'19
National Cyber Security Programme at risk of missing targets
The National Audit Office has sharply criticised the Cabinet Office over failings in how it set up the National Cyber Security Programme that mean it may struggle to meet its goals
-
March 14, 2019
14
Mar'19
Avoid infosec mistakes of the past, urges Robert Hannigan
Technology innovators need to avoid security mistakes of the past by building in integrity so that products and services can be used with trust and confidence, says former GCHQ director
-
March 13, 2019
13
Mar'19
IT Priorities 2019: ASEAN organisations lay digital foundations
Organisations in Southeast Asia are planning to shore up their IT infrastructure to speed up application development and become more customer focused
-
March 13, 2019
13
Mar'19
Almost half UK firms hit by phishing attacks
Almost half of UK organisations have been compromised in the past two years using phishing attacks, despite high levels of cyber awareness and training, research shows
-
March 12, 2019
12
Mar'19
Cyber attackers favouring stealthier attacks, says Darktrace
Cyber attackers are moving away from ransomware to stealthier tactics, including banking Trojans and cryptojacking, an analysis of attack data reveals
-
March 12, 2019
12
Mar'19
Many firms unaware of data exfiltration threat
Many firms are unaware that they are being targeted by cyber espionage and that data is being exfiltrated from their networks by overseas adversaries, a security firm warns
-
March 12, 2019
12
Mar'19
Despite failings, exec appetite for secure collaboration growing
Top business decision makers are more reckless than ever with company data, but the appetite for secure collaboration tools is growing, survey reveals
-
March 11, 2019
11
Mar'19
Citrix breach once again highlights password weaknesses
A reported breach of Citrix, which has potentially exposed data at hundreds of thousands of customer organisations, has once again highlighted the need for an alternative to passwords and the importance of supply chain security
-
March 08, 2019
08
Mar'19
Growing awareness of mobile security risk
There is a growing awareness of mobile security risk among members of the information security community, but most admit accessing corporate data from personal devices or public Wi-Fi
-
March 08, 2019
08
Mar'19
Equifax defends against scathing Senate report
Equifax chief says firm did take cyber security seriously in a response to a scathing Senate report on the credit rating agency’s 2017 data breach, which experts say highlights failings around open source software
-
March 07, 2019
07
Mar'19
Machine identities for sale on dark web, business warned
Academics and security professionals are warning businesses that certificates used to establish trust and privacy on the internet are being weaponised and sold to cyber criminals bundled with other services
-
March 06, 2019
06
Mar'19
Cyber espionage group behind SingHealth attack
A cyber espionage group dubbed Whitefly has been identified as the perpetrators behind Singapore’s largest data breach to date
-
March 06, 2019
06
Mar'19
5G one of several security challenges to CNI
5G technology is among the key security challenges facing critical national infrastructure and all other business organisations, according to the Information Security Forum
-
March 05, 2019
05
Mar'19
US doubles down on Huawei fears as Chinese prepare to sue
US secretary of state Mike Pompeo has reinforced his attacks on Huawei as the firm apparently prepares to sue the US government over its federal-level ban
-
March 05, 2019
05
Mar'19
IT Priorities 2019: What projects are IT professionals spending their budgets on?
The Computer Weekly/TechTarget IT Priorities 2019 survey finds that cloud maturity, security and automation are among the hot areas for spending
-
March 05, 2019
05
Mar'19
Singapore can now certify security products based on Common Criteria
The city-state is has attained the status of a Certificate Authorising Nation, enabling it to evaluate and certify security products under the Common Criteria standard
-
March 04, 2019
04
Mar'19
Cyber awareness of UK boards found wanting
Boards of many of the UK’s biggest firms must do more to be cyber aware, according to a government report.
-
March 04, 2019
04
Mar'19
RSA Security bets on digital risk management
RSA Security chief predicts that managing digital risk is set to become increasingly important to organisations as they complete their journeys to digital transformation
-
March 04, 2019
04
Mar'19
IT Priorities 2019: APAC keeping pace with digital transformation
Digital transformation is well underway among APAC enterprises which are looking to spend more on refreshing their IT infrastructure and technologies that improve employee productivity
-
March 01, 2019
01
Mar'19
Teen becomes first millionaire through HackerOne bug bounties
A self-taught teen hacker from Argentina has become the first bug bounty hacker to become a millionaire by hacking to create a safer internet
-
February 28, 2019
28
Feb'19
Supplier consolidation tops infosec goals for 2019
Supplier consolidation, collaboration between networking and security teams, and security awareness are the top priorities for information security professionals trying to prepare for the unknown, annual benchmark study shows
-
February 28, 2019
28
Feb'19
Sextortion accounts for one in 10 spear-phishing emails
Email sextortion scams have increased in frequency and scope in the past four months, as well as evolving to bypass spam filters and trick recipients into reading the messages, research shows
-
February 27, 2019
27
Feb'19
Icann calls for community collaboration to protect the internet
The domain name system watchdog Icann has reaffirmed its commitment to engage in collaborative efforts to ensure the security, stability and resiliency of the internet’s global identifier systems
-
February 27, 2019
27
Feb'19
Chinese cyber attack group Bronze Union targeting weapons tech
Weapons technology is among the latest targets of a highly adaptable cyber espionage group that uses a wide range of publicly available and custom attack tools, presenting a challenge to network defenders
-
February 26, 2019
26
Feb'19
Security is battling to keep pace with cloud adoption
Cloud-based business initiatives are accelerating more rapidly than security teams can secure them, a survey reveals
-
February 26, 2019
26
Feb'19
Cyber criminals earn $3bn a year exploiting social platforms
Businesses urged to respond to research findings that the ready availability of hacking tools, wildfire spread of malware and proliferation of cryptocurrency mining has seen a 300-fold increase in social media-enabled cyber crimes in two years
-
February 25, 2019
25
Feb'19
EU gathers momentum in cyber security legislation and cooperation
The past two years have seen a step-change in the rate at which the European Union is putting legislation in place to support improved cyber security standards, collaboration and sharing of resources, says digital commissioner’s representative
-
February 25, 2019
25
Feb'19
Cyber power needs wider discussion, says GCHQ director
The topic of cyber power needs wider discussion, says GCHQ head in a speech about the opportunities of digital innovation such as 5G, as well as the accompanying complexity and risk, with particular mention of China and Huawei
-
February 25, 2019
25
Feb'19
Android now Fido2 certified
Mobile operating system’s certification accelerates global migration beyond passwords, says Fido Alliance, which seeks to eliminate the world’s dependence on password-based security